Security :: Can't Open Gmail / Certificate Error?

Jan 5, 2011

The problem is here:When I was open gmail in my system Certificate Error is coming. The error details:

This Connection is Untrusted You have asked Firefox to connect securely to url, but we can't confirm that your connection is secure. Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.

What Should I Do? If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.

View 7 Replies


Security :: Getting Expired Certificate Error When Not Accessing Site?

Jan 25, 2010

Occasionally my machine displays the following warning whenever left to itself for an hour or so. " uses an invalid security certificate. The certificate expired on 09/16/2009 10:52 AM. (Error code: sec_error_expired_certificate)"

I am not trying to access this site. It is not always the same url. My machine, described below, is networked to an XP machine which recently had to be recovered after a viral attack. Since I am not usually interested I decline to use the certificate and the warning goes away.

View 2 Replies View Related

Ubuntu :: Firefox 3.6.12 On 10.10 Ssl Security Certificate Error (Comodo Certs)?

Dec 6, 2010

Firefox 3.6.12 on Ubuntu 10.10 on my desktop computer is reporting a "this connection is untrusted" error for sites that have security certificates provided by COMODO. Yet, the same sites work fine in Firefox 3.6.x on Windows XP, or Chromium in Ubuntu. Here is the more specific message: "The certificate is not trusted because the issuer certificate is unknown.

(Error code: sec_error_unknown_issuer)" The issuer is listed as "COMODO High Assurance Secure Server CA." Here are some examples that throw this error for me:[URL]... It appears that there was some controversy with COMODO and Mozilla (due to bad behavior by COMODO) in the past, but all I can find on that indicates that this should be not an issue any longer.

Anybody with ideas?

View 1 Replies View Related

Software :: Getting Gmail (Local Issuer Certificate) With Fetchmail

Oct 6, 2010

Using ubuntu 10.04 32-bit. I'm unable to get a gmail connection: Polling code in .fetchmailrc:

poll with proto POP3
user 'tim042849' there with password 'xxxxxx' is 'tim' here options ssl sslcertck sslcertpath /home/tim/.certs/
Relevant log messages:

fetchmail: Server certificate verification error: unable to get local issuer certificate
4034:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed:s3_clnt.c:980:
fetchmail: SSL connection failed.
fetchmail: socket error while fetching from
fetchmail: Query status=2 (SOCKET)

wget -O equifax.pem [URL]
Both of the certificate files have permissions of 644 and user is tim
Unless I'm wrong, the key message is
Server certificate verification error: unable to get local issuer certificate

View 4 Replies View Related

General :: Get A Certificate Error 60: "server Certificate Verification Failed" When Trying To Setup A Ubuntu Cloud?

Aug 24, 2011

I'm trying to install an Ubuntu cloud on my home network - I've been following this guide. When I arrived at STEP 6: Install an image from the store PART 3: Click on the Store tab I get the following error message on the page: Error 60: server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none

View 1 Replies View Related

Security :: LDAP Can't Bind "certificate Verify Error"

Apr 14, 2010

this is not on the master node, but rather the node that is being replicated to. The problem occurs when i query using ldapsearch or an `getent passwd` EG ldapsearch:


[root@cakeslave ~]# ldapsearch -x -b 'cn=Christian Unger,ou=People,dc=example,dc=org' -D "cn=replica,dc=example,dc=org" -H ldaps:// -w cakewalk
ldap_bind: Can't contact LDAP server (-1)
additional info: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed


The cacert.pem in /etc/ssl/certs and /etc/openldap/certificate are identical (check using md5sum). I have done an strace and found that it looks at /etc/pki/tls/cert.pem .

View 6 Replies View Related

Security :: SSH User Authentication Using Certificate

Mar 19, 2010

I was trying to configure user authentication in SSH using certificate method.As u all know the usual way of authentication is using the ssh-keygen method. But i want the another method where we create a certificate key and send it to the CA, which signs it and send back etc etc.I cannot find any unique procedure in the net to configure this method.

View 3 Replies View Related

Security :: Getting Rid Of Certificate Requirement In MUTT

Apr 7, 2010

When running MUTT on a RHEL 5.4 box, I get the message:
Server certificate has expired

This certificate belongs to:



I choose "accept always", but the same message appears next time. I do not wish to have a certificate requirement for MUTT and did not intentionally set the program up to include this feature. How can I get rid of it? My second choice would be to get a new certificate, but then I have to go through this every year. I have MUTT working on two other servers and this does not happen.

View 3 Replies View Related

Fedora Security :: How To Add An Existing Certificate

Apr 14, 2011

How can I add an existing certificate (pem format) as trusted in Fedora via the command line?Do I have to copy the files to a certain keystore? Where does Fedora store the trusted certificates

View 2 Replies View Related

Fedora :: Invalid Security Certificate?

Jun 15, 2010

Got F13 installed yesterday, this afternoon I suddenly started getting Secure Connection Failed warnings. I'm not sure whose problem it is because it mentions uses an invalid security certificate.This certificate is only valid for * Code: ssl_error_bad_cert_domain)It continues to say that someone could be impersonating the actual server. I am still receiving mail through google and my google calendars seem to be working. I do use OpenDNS for my DNS instead of my ISPs (Comcast which would very often slow down) and obviously I use IMAP mail with google on Thunderbird. So is it google, or OpenDNS, or Thunderbird that has a problem. Firefox does not seem to have a problem

View 2 Replies View Related

Fedora Security :: View The Currently Used Certificate?

Apr 2, 2009

I am having issues with using OpenSSL. How do I view the currently used certificate? Also, do you know of a good site that has instructions on how to install a certificate. The previous user installed a GoDaddy cert for an FTP server and I need to update it because it's expiring real soon.

View 10 Replies View Related

General :: Open SSL Installed - Certificate Generation Fails

Jun 25, 2010

I have a problem related with certificate generation. I had successfully installed openssl. After that I do these.

[root@localhost openssl-1.0.0a]# cd /usr/local/ssl/misc
[root@localhost misc]# ./ -newca
CA certificate filename (or enter to create)

Making CA certificate ...
Generating a 1024 bit RSA private key
writing new private key to './demoCA/private/./cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:

You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank. For some fields there will be a default value,
If you enter '.', the field will be left blank.

Country Name (2 letter code) [GB]:IN
State or Province Name (full name) [Berkshire]:KERALA
Locality Name (eg, city) [Newbury]:KOCHI
Organization Name (eg, company) [My Company Ltd]:squad
Organizational Unit Name (eg, section) []:SUPPORT
Common Name (eg, your name or your server's hostname) []:localhost
Email Address []

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:mahhghh
An optional company name []:mca
Using configuration from /etc/pki/tls/openssl.cnf
Enter pass phrase for ./demoCA/private/./cakey.pem:
I am unable to access the ../../CA/newcerts directory
../../CA/newcerts: No such file or directory
Distro:Centos 5.3 kernel 2.6.18

View 1 Replies View Related

Security :: Invalid (Untrusted) Certificate - TWC Webmail

Oct 7, 2010

At the login webpage of <[URL]>, the Time Warner Cable (TWC) Webmail site, I am immediately confronted with a warning that the Security Certificate is invalid & that the site is untrusted. This occurs with Firefox, Seamonkey, & Konqueror. This does not occur on Microsoft or Apple systems; I have checked other colleagues machines. I have manually overridden the warning & everything functions fine. I have contacted TWC & am awaiting their tests. But, I would like some independent corroboration from other users in the Linux community. Could some of you perform the test yourself on this URL? An error will be readily apparent.

View 14 Replies View Related

Fedora Security :: Sshd With Both Certificate AND Password After Each Other?

Mar 9, 2011

I want to enable sshd from Internet, but I want to secure it as much as possible.Therefore, despite the fact that the service will run on a tcp port above 2000 to prevent most scans, I would like to :- First, force the use of a client certificate, to avoid brute force attack on my users/passwords- second force the use of a username/password to avoid someone having access to my system just by stealing my key..When I look at the configuration, it's possible to enable both, but one of them is sufficient to login, but I can't find how to make them both mandatory...

View 2 Replies View Related

Ubuntu Security :: Forged CA Certificate In Firefox 3.6

Mar 25, 2010

Having read how a private company is providing governments (and probably criminals) with a box that can listen in on SSL traffic by the use of forged CA certificates - [URL]. It turns out there's already a forged certificate in Firefox 3.6.
Go to Edit>Preferences>Advanced>Encryption>View Certificates and look for 'Equifax Secure Inc.' - You should see a proof-of-concept rogue certificate called 'MD5 Collisions Inc.' and a link to phreedom which explains the method used to generate it. That little lock doesn't necessarily mean that you're safe...

View 4 Replies View Related

Ubuntu :: Localhost Uses Invalid Security Certificate (Self Assigned)

Apr 25, 2009

I just upgraded from Ubuntu 8.10 to 9.04. I installed Webmin 1.470 but when I tried to run it from Firefox 3.09 I got the following message.

localhost:10000 uses an invalid security certificate. The certificate is not trusted because it is self signed. (Error code: sec_error_untrusted_issuer).

Never had this problem with Ubuntu 8.04.

View 9 Replies View Related

Fedora Security :: Rkhunter Error - Can't Open File

Jun 4, 2009

why I can't open this file.

[root@localhost fedora]# gedit /etc/var/log/rkhunter/rkhunter.log No protocol specified (gedit:24869): Gtk-WARNING **: cannot open display: :0.0 [root@localhost fedora]# gedit /var/log/rkhunter/rkhunter.log No protocol specified

There is absolutely no reason why it can't be opened. I opened it just fine earlier and now it won't open up for inspection.

View 7 Replies View Related

Software :: Firefox Claims Invalid Security Certificate For Website

May 19, 2011

I get an Untrusted Connection error when I visit this site to login into my GRE account, and I cannot add it as an exception, in Mozilla Firefox 4.0 on Ubuntu 11.04. When I visit the site using Chrome, I have no issues. Is this a bug in Firefox's certificate management? I'm using Ubuntu 11.04. I do not get this error in Windows' Firefox 4.0.

View 3 Replies View Related

Security :: How To Renew Existing SSL Certificate Using By Genkey In Fedora Core 7

Jan 4, 2010

I am trying to renew the existing SSL certificate by using genkey for our shopping website. i havent seen any information how to generate a new certificate for. Is any one could tell me how to change SSL certificates?

View 4 Replies View Related

Ubuntu :: Gmail Will Not Open In Any Browser Except Firefox

Aug 22, 2010

For more than a week now, and Gmail is not opening. I was using Chromium, then tried Epiphany, Google chrome, even Midori; but it only opens with Firefox!! Am I the only one?

View 4 Replies View Related

Security :: How To Block Attachments To Gmail

May 7, 2010

I was wondering how to block attachments to gmail. I am running squid 2.7 stab9 with dansguardian 2.10, users authenticated from LDAP. I have configured the POST restrictions in Dansguardian which does block all attachments to hotmail/yahoo etc etc but attachments to gmail continue to upload.

View 1 Replies View Related

CentOS 5 :: Install CA Certificate To Certificate Database?

Aug 21, 2008

I'm following a book (Mastering OpenLDAP) to install and setup OpenLDAP on CentOS, however this book is written for Debian, so some steps do not fit. Here's one, in order to setup TLS, I need CA certificate and server certificate and key. The book said in order to install the CA certificate, I should copy it to /usr/share/ca-certificates and run update-ca-certificates, obviously this doesn't work for CentOS. So I wonder what's the correct way to install CA certificate on CentOS? I suspect I can make OpenLDAP work without the installation, since in webmin configuration it only asks for the location of the certificate file, so I can stick it anywhere? Or is there a system wide certificate database I need to update?

View 2 Replies View Related

Security :: Block Only Gmail Access Through Https?

Nov 5, 2010

My Problem is: I want to stop gmail access without blocking https. Yes in my squid proxy normal is not accessible. But gmail recently started https service by which user can still get access to gmail. I DONT WANT TO STOP https CAUSE ITS BEING USING BY MY COMPANY GOOGLE MAIL PROGRAM.

View 2 Replies View Related

Security :: Gmail Chat Block By Squid?

Jan 17, 2010

how to disable the gmail chat? My means to say that when we login to gmail , after that the chat will open, I want to disable that chat. am using Redhat 9 and squid stable 2.5 version. I have tried the things mentioned below, but chat is still working.


View 1 Replies View Related

General :: When Try Https Get Certificate Error?

Jul 13, 2010

I am using the curl version 7.21.0. When I try the curl command from command like, things works fine for the http sites. But when I try https I get certificate error. I have source compiled curl with latest OpenSSL. I have also tried downloading the latest certificate bundle. With the same version of curl, same version of openssl with same certificate file I can get it work on the linux. But in the QNX OS I get this error.

./curl --cacert /mnt/temp/curl-ca-bundle.crt -v
* About to connect() to proxy port 8080 (#0)
* Trying connected


View 1 Replies View Related

Security :: Block Gmail Chatting And Gtalk For Few Users

Jan 20, 2010

I have blocked both gtalk and gmail chatting for total network using both squid and iptables. I want to give access for gtalk and gmail chatting to some user. How I can do it.

View 3 Replies View Related

Ubuntu Security :: Hotmail And Gmail Accounts Hijacked

Sep 8, 2010

I recently received an email from a friend without subject and just a link. Since we do that a lot, I clicked on it. I was taking to a website that looks like a phishing site and my computer hard drive started working feverishly. I closed it quickly.

First, I want you guys to be aware of this thing since it seems to be fairly new.
Second, I want to know if I have been compromised. I already changed the password on my gmail account and I accessed the site using Ubuntu and Firefox.

View 3 Replies View Related

Fedora Security :: KWallet Not Storing Gmail's Password?

Aug 26, 2011

This used to work in Fedora < 15. Whenever I want to send an e-mail using Gmail's SMTP server for the first time in a given session, the KWallet system asks if I would not rather migrate the password and store it encrypted inside a wallet. Every time I concur and every time an error message pops-up, as soon as I try and send another e-mail. The attached snapshot shows the error message I get. It doesn't matter how many times I select "Store Password". Every time the ordeal is the same. Up to Fedora 14 this method worked all right, but now it fails.

View 1 Replies View Related

Security :: Gmail And Winnow.compromised.ts.jsexploit.5.UNOFFICIAL Malware?

Apr 26, 2010

second time clamav detects the malware on laptop does this mean, is it serious and what is the origin of this infection?

View 9 Replies View Related

Fedora :: YUM Freezes With Error - Peer Certificate Invalid

Sep 17, 2010

My organization just moved to using a zscaler proxy system. Basically, I have to use a .pac file in Firefox to get onto the proxy, which directs me to a series of two Flash pages, one to input my username, one for the password. After reading through the .pac file, I was able to get some command-line things to work by specifying the proxy given at the end. However, this server uses an SSL certificate that is not emitted by an authority, but rather directly by our organization. In Firefox, I had to import this certificate to enable https:// browsing.

Is there any way to "import" this certificate so that yum can use it? Because yum freezes with the error:
Could not get metalink [URL] error was
14: Peer cert cannot be verified or peer cert invalid

View 6 Replies View Related

Server :: RHEL X86_64 Yum - Error: Certificate Verify Failed

Aug 11, 2010

We installed 3 new rhel 5.5 systems yesterday; each of which are generating this error " Error: certificate verify failed" in response to a basic "yum update". From what I can gather, via a general search, this may be isolated to x86_64 -- however the references I found were specific to Satellite Server (which we are not using). Never the less, I checked the PATHs for the cert and they are correct. All of our 32 bit systems are running RHEL 5.5 and this is not a problem on any of them.

View 6 Replies View Related

Security :: Digital Certificate - "can't Set The Browser Java Is Enabled And So On"

May 10, 2010

Girlfriend with a problem: she needs to sign up at the unemployment office in Spain. She is here in China. But for reasons unknown, she can't access the bit which she needs to. It says: 'can't set the browser' Java is enabled and so on, we read the instructions. On her windoze computer, she has a digital certificate. I copied it onto my mem-stick. When I try to copy it from my mem-stick to my Linux machine, I can't. Not even as root! The folder is called 'certificado digital' and contains two folders:

Trash.(tilde)1 and VM_Ware_Workstation They both have some kind of encrypted stuff inside. Can this certificate be installed on my machine?? Trash has 5 things, VM_Ware_Workstation has 3 things. The guy who set this up for her told her she must use Mozilla. Is a certificate only valid with a particular browser?

View 13 Replies View Related

OpenSUSE Network :: Use Gmail Smtp Relay / Send Emails Form Server Using Gmail Account?

Oct 28, 2010

I would like to send emails form my server using my gmail account.Does anybody know how to do it?

OS = OPENSUSE 11.3 server installation - NO GUI....

View 9 Replies View Related

General :: Apache And Certificates / Unable To Load Certificate 31352:error:0906D06C:PEM Routines:PEM_read_bio?

Sep 29, 2009

I used the Center for Internet Security Benchmark for Apache Web Server v2.1 (January 2008) manual.

This is the guidelines I have to follow when installing and configuring Apache...So the problem arises when we get to page:28

Just after running this command: openssl x509 -in url | more

We get this error:unable to load certificate 31352:error:0906D06C:PEM routines:PEM_read_bio:no start lineem_lib.c:650:Expecting: TRUSTED CERTIFICATE

View 2 Replies View Related

Server :: Error When Configuring Exim To Use Gmail

Nov 1, 2010

I'm using CentOS 5 with WHM & exim 4, & when I configured exim to use gmail as an outgoing mail server I got this error:

2010-10-13 20:20:33 1P64vN-0002h0-7v ** R=send_via_gmail T=gmail_smtp: SMTP error from remote mail server after MAIL FROM: SIZE=5387: host [**.**.**.**]: 530-5.5.1 Authentication Required.

Learn more at 530 5.5.1 [URL]
Only debian solutions & paths that doesn't exist in my servers.

View 2 Replies View Related

Ubuntu :: Use Any Browser And Go To Gmail - Can't Get Gmail To Load

Jul 27, 2010

use any browser and go to gmail. i can't get gmail to load. if i browse on videos, links to videos don't work. they appear to be taking a long time to buffer, then a message appears saying to try again. sometimes, links on google search pages are all dead. yahoo mail loads as far as logging me in, then i get a page with all dead links.

i'm using a laptop at several locations that have free public wifi. at some places, everything works perfectly normally. at other places, google and yahoo are almost useless. the "bad" places work just fine under ms windows.

so i figure it's a networking/handshaking issue, but that's all i can figure. i need help to troubleshoot it further. if it's happening to me, it has to be happening to other people, and i consider it a major hassle.

View 9 Replies View Related

Ubuntu Networking :: Cannot Access Gmail. Just Gmail?

Nov 8, 2010

My college internet providers shifted to a different setting.. defined in the changing lan proxy settings on the user end. I.e.ip - and port to 3000. This to reduce misuse of the net connection ..The thing is, since then, every other website is working, except GMail. It isnt blocked, the Nebero page shows up for blocked sites. When attempting to open gmail, the default internet page shows up for unavailability of page owing to no or slow response from the server, or the firewall or proxy settings not appropriately configured. I cannot open gmail, the connection on empathy im. I cant ping gmail either. No response. What can be the problem.

View 9 Replies View Related

General :: CRL File Error : PEM Routines:PEM_read_bio:no Start Line:pem_lib - Unable To Configure X.509 Storage For Certificate

Sep 10, 2010

I am configuring my Apache Server to enable checking CA Revocation List, and my Configuration lists as following :


SSLCARevocationFile /etc/httpd/confi.d/ssl.crt/CRL1.crl

But the server can not start, and the log says:


Unable to configure X.509 Storage for certificate

If I try this command to view content of my CRL file :


openssl crl -text -in CRL1.crl -noout

the console shows :


error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib:647:Expecting: X509 CRL

I think there is something wrong with my CRL file, such as the file format.Is there any requirement to the CRL file? What can I do to enable this CRL file checking?

View 2 Replies View Related

General :: Postfix And Gmail / Dropping Approx 50% Of Mails With An Error?

Nov 14, 2010

I've setup postfox on Fedora 13 in order to send emails to and from gmail. I thought this was working, but it is dropping approx 50% of mails with an error. The other 50% work OK. It seems completely random.
I've read the link but I stil dont quite understand.

My machine is just a PC, on talktalk's network in the UK.
I use dyndns to allocate a DNS alias (well several actually) to my dynamic IP address - not sure if this is relevent.

Is it failing due to a reverse DNS lookup on the dyndns host? Or is it because it cannot resolve my localhost.localdomain?

I used to have this running on opensuse and swear it used to work 100% of the time.
What am I doing wrong?


Nov 14 18:12:40 linuxserver1 postfix/smtpd[14619]: connect from localhost.localdomain[]
Nov 14 18:12:40 linuxserver1 postfix/smtpd[14619]: 367D428388: client=localhost.localdomain[]
Nov 14 18:12:40 linuxserver1 postfix/cleanup[14622]: 367D428388: message-id=<20101114181240.367D428388@linuxserver1.localdomain>
Nov 14 18:12:40 linuxserver1 postfix/qmgr[2834]: 367D428388: from=<>, size=3309455, code....

View 4 Replies View Related

Ubuntu :: Error Server:> Openssl S_client -connect -showcerts

Nov 10, 2010

I am using fetchmail (with ssl support) to download my e-mail. About a week ago, the downloading from two servers stopped, among them, due to an ssl error. Usually that means updating the ssl fingerprint in fetchmail.conf, and when I wanted to do this I discovered that there seems to a issue with openssl.

When I do openssl s_client -connect -showcerts I now get an error

server:> openssl s_client -connect -showcerts

CONNECTED(00000003) 5448:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:

Ubuntu 8.04 (2.6.24-28-server #1 SMP Sat Oct 16 17:53:34 UTC 2010 i686 GNU/Linux)OpenSSL 0.9.8g 19 Oct 2007

Can anybody explain to me what the error means and how to fix it?

View 1 Replies View Related

Copyrights 2005-15, All rights reserved