[Bug 1066585] [NEW] [Regression] Cacert CA certified certificate no longer recognized

Rolf Leggewie 1066585 at bugs.launchpad.net
Sun Oct 14 20:42:49 UTC 2012 

Public bug reported:

There is a fairly serious regression from thunderbird
15.0.1+build1-0ubuntu0.10.04.1 to 1:16.0.1+build1-0ubuntu0.10.04.1.  The
later version apparently no longer recognizes the Cacert CA whereas the
former does. I use a self-signed cert for my mail-server with a key that
is trusted by Cacert.org.  This stopped working today with said update.
Upon connection to the mail server I'm being shown an "Add security
exception"-dialog saying that the certificicate isn't trusted. I have
run TB in safe-mode and it was the same.  I've also tried adding the
Cacert root CA explicitly as trusted but TB told me that the certificate
is already in the pool (not really a surprise as the old version of TB
relied on it quite happily).  There does not seem to be a report yet on
bugzilla.mozilla.org.  I've now downgraded back to the previous version
and used pinning to prevent an upgrade.

Oh, and by the way, feel free to ignore this ticket as I believe in
"Datensparsamkeit" instead of routinely uploading oodles of private
information via apport.  This ticket contains all the information you
need, if not, feel free to ask for clarification.  I hope Ubuntu is
still about quality and not about being required to use certain tools to
report an issue (while being ignored in the bug tracker nonetheless ;))

** Affects: thunderbird (Ubuntu)
     Importance: Undecided
     Assignee: Chris Coulson (chrisccoulson)
         Status: New

** Description changed:

  There is a fairly serious regression from thunderbird
  15.0.1+build1-0ubuntu0.10.04.1 to 1:16.0.1+build1-0ubuntu0.10.04.1.  The
  later version apparently no longer recognizes the Cacert CA whereas the
  former does. I use a self-signed cert for my mail-server with a key that
  is trusted by Cacert.org.  This stopped working today with said update.
  Upon connection to the mail server I'm being shown an "Add security
- exception"-dialog claiming saying that the certificicate isn't trusted.
- I have run in safe-mode and it was the same.  I've also tried adding the
+ exception"-dialog saying that the certificicate isn't trusted. I have
+ run TB in safe-mode and it was the same.  I've also tried adding the
  Cacert root CA explicitly as trusted but TB told me that the certificate
  is already in the pool (not really a surprise as the old version of TB
  relied on it quite happily).  There does not seem to be a report yet on
  bugzilla.mozilla.org.  I've now downgraded back to the previous version
  and used pinning to prevent an upgrade.
  
  Oh, and by the way, feel free to ignore this ticket as I believe in
  "Datensparsamkeit" instead of routinely uploading oodles of private
  information via apport.  This ticket contains all the information you
  need, if not, feel free to ask for clarification.  I hope Ubuntu is
  still about quality and not about being required to use certain tools to
  report an issue (while being ignored in the bug tracker nonetheless ;))

-- 
You received this bug notification because you are a member of Mozilla
Bugs, which is subscribed to thunderbird in Ubuntu.
https://bugs.launchpad.net/bugs/1066585

Title:
  [Regression] Cacert CA certified certificate no longer recognized

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/thunderbird/+bug/1066585/+subscriptions

More information about the Ubuntu-mozillateam-bugs mailing list