[precise] Too few certificate authorities listed after upgrade to 12.04
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evolution (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Precise |
Fix Released
|
High
|
Unassigned | ||
nss (Ubuntu) |
Invalid
|
High
|
Unassigned | ||
Precise |
Invalid
|
High
|
Unassigned |
Bug Description
After upgrading to precise, when I try to send an email with evolution, I am presented with:
SSL Certificate check for smtp.canonical.com:
Issuer: CN=Thawte DV SSL CA,OU=Domain Validated SSL,O="Thawte, Inc.",C=US
Subject: CN=smtp.
Fingerprint: a2:ee:86:
Signature: BAD
Do you wish to accept? Yes|No
I verified the certificate is valid using gnutls:
* gnutls-cli -s --print-cert --x509cafile /etc/ssl/certs/ -p 587 smtp.canonical.com
* > ehlo test
* > starttls
* in another terminal do 'kill -s SIGALRM <pid og gnutls-cli>'
Remembering that evolution uses nss, I then went to Edit/Preference
Marking this as High priority and checking the security box as this prevents proper certificate verification.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libnss3 3.13.1.
ProcVersionSign
Uname: Linux 3.2.0-7-generic x86_64
ApportVersion: 1.90-0ubuntu1
Architecture: amd64
Date: Tue Jan 3 21:34:09 2012
InstallationMedia: Ubuntu 11.04 "Natty Narwhal" - Release amd64 (20110425.2)
SourcePackage: nss
UpgradeStatus: Upgraded to precise on 2012-01-02 (1 days ago)
Changed in evolution (Ubuntu Precise): | |
importance: | Undecided → High |
I just tested this in a VM, and evolution shows zero certificate authorities.