Re: [SLE] Online update configuration error

---

• From: Mello <mellowiz@xxxxxxxxx>
• Date: Sat, 15 Jul 2006 19:59:26 +0200

---

On 7/15/06, Rahul Raj <systemdotout@xxxxxxxxx> wrote:

I installed suse10.1, when i tried to setup online update configuration it
is giving one of the following errors:

1)
curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify
failed
More details here: http://curl.haxx.se/docs/sslcerts.html

curl performs SSL certificate verification by default, using a "bundle"
of Certificate Authority (CA) public keys (CA certs). The default
bundle is named curl-ca-bundle.crt; you can specify an alternate file
using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
the bundle, the certificate verification probably failed due to a
problem with the certificate (it might be expired, or the name might
not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
the -k (or --insecure) option.


or 2)
Execute curl command failed with '7':
curl: (7) couldn't connect to host

How do I install the Certificate and where do I get it from?


Rahul.

Hi Rahul,
You should be able to find them on the site of the repositories you are using.
In case of Packman for instance:
perform a ftp://ftp.links2linux.de/pub/packman/public-keys.asc then
$ gpg --import public-keys.asc

in case of suser-guru the location is:
ftp://ftp.gwdg.de/pub/linux/misc/suser-guru/guru-rpm.asc

Thanks,
-mw

--
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@xxxxxxxx

---

• References:
  • [SLE] Online update configuration error
    • From: Rahul Raj

• Prev by Date: Re: [SLE] Getting SuSE 10.1 recogising my SATA disk.
• Next by Date: [SLE] Jengelib Kernel 2.6.18 Questions
• Previous by thread: [SLE] Online update configuration error
• Next by thread: [SLE] Getting SuSE 10.1 recogising my SATA disk.
• Index(es):
  • Date
  • Thread

---

Relevant Pages Need pointers on managing client certs... ... I've been exploring openssl and curl, ... client side which appears to be subject to periodic expiration. ... get things to work simply by just telling curl not to do certificate ... so to get their cert file manually updated. ... (comp.security.unix) [ GLSA 200909-20 ] cURL: Certificate validation error ... An error in the X.509 certificate handling of cURL might enable remote ... attackers to conduct man-in-the-middle attacks. ... Security is a primary focus of Gentoo Linux and ensuring the ... (Bugtraq) [Full-disclosure] [ GLSA 200909-20 ] cURL: Certificate validation error ... An error in the X.509 certificate handling of cURL might enable remote ... attackers to conduct man-in-the-middle attacks. ... Security is a primary focus of Gentoo Linux and ensuring the ... (Full-Disclosure) Re: Firefox 2.0.0.5 handling of binary files ... Those are lines of help from the curl help page. ... SSL certificate problem, verify that the CA cert is OK. ... bundle is named curl-ca-bundle.crt; you can specify an alternate file ... (comp.sys.mac.apps) Re: Need pointers on managing client certs... ... I've been exploring openssl and curl, ... > client side which appears to be subject to periodic expiration. ... > get things to work simply by just telling curl not to do certificate ... OCSP is built into later versions of openssl. ... (comp.security.unix)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)