rrq | I was looking for ideas about what's wrong in their perspective/environment | 00:00 |
---|---|---|
rrq | I believe it's in UK; ... apparently an ISP caching too willy-nilly? | 00:01 |
bb|hcb | caching https?! no way ;) | 00:02 |
rrq | well, it's UK... they do life their way ;) | 00:02 |
rrq | what else? | 00:03 |
bb|hcb | Most probably there is something those tools try to check online, like revocation cert, or intermediate authority... | 00:03 |
bb|hcb | Those may have become banned after brexit, who knows? | 00:03 |
rrq | mmm it's tail end of https://dev1galaxy.org/viewtopic.php?pid=38404#p38404 | 00:04 |
rrq | warning from plain wget access | 00:04 |
bb|hcb | LE did some cert auth rollover and any system that does not include the new one will not accept a LE cert. Both ascii and leap 43 look like not updated | 00:06 |
bb|hcb | I am too lazy to check if that update is in ascii's ca-certificates 20200601~deb9u1; or maybe they never updated? | 00:09 |
bb|hcb | Hint: it is most probably already there :) | 00:09 |
rrq | but looks like his openSUSE accesses the previous cert with openssl ? | 00:10 |
rrq | might need to leave this in the "it's magic" box | 00:15 |
bb|hcb | Ask them to check with another website with letsencrypt generated cert. Most probably it is an old ca-certificates package | 00:21 |
rrq | don't like magic, yes? :) | 00:36 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!