Tracking Forums, Newsgroups, Maling Lists
Home Scripts Tutorials Tracker Forums
  Advanced Search
  HOME    TRACKER    Linux


Security :: Can't Open Gmail / Certificate Error?

The problem is here:When I was open gmail in my system Certificate Error is coming. The error details:

This Connection is Untrusted You have asked Firefox to connect securely to url, but we can't confirm that your connection is secure. Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.

What Should I Do? If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.

View 7 Replies (Posted: 01-05-2011, 05:54 AM)

Sponsored Links:

Related Forum Messages For Linux category:
Security :: Getting Expired Certificate Error When Not Accessing Site?
Occasionally my machine displays the following warning whenever left to itself for an hour or so. " uses an invalid security certificate. The certificate expired on 09/16/2009 10:52 AM. (Error code: sec_error_expired_certificate)"

I am not trying to access this site. It is not always the same url. My machine, described below, is networked to an XP machine which recently had to be recovered after a viral attack. Since I am not usually interested I decline to use the certificate and the warning goes away.

Posted: 01-25-2010, 02:15 AM

View 2 Replies!   View Related
Ubuntu :: Firefox 3.6.12 On 10.10 Ssl Security Certificate Error (Comodo Certs)?
Firefox 3.6.12 on Ubuntu 10.10 on my desktop computer is reporting a "this connection is untrusted" error for sites that have security certificates provided by COMODO. Yet, the same sites work fine in Firefox 3.6.x on Windows XP, or Chromium in Ubuntu. Here is the more specific message: "The certificate is not trusted because the issuer certificate is unknown.

(Error code: sec_error_unknown_issuer)" The issuer is listed as "COMODO High Assurance Secure Server CA." Here are some examples that throw this error for me:[URL]... It appears that there was some controversy with COMODO and Mozilla (due to bad behavior by COMODO) in the past, but all I can find on that indicates that this should be not an issue any longer.

Anybody with ideas?

Posted: December 6th, 2010

View 1 Replies!   View Related
Software :: Getting Gmail (Local Issuer Certificate) With Fetchmail
Using ubuntu 10.04 32-bit. I'm unable to get a gmail connection: Polling code in .fetchmailrc:

poll with proto POP3
user 'tim042849' there with password 'xxxxxx' is 'tim' here options ssl sslcertck sslcertpath /home/tim/.certs/
Relevant log messages:

fetchmail: Server certificate verification error: unable to get local issuer certificate
4034:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed:s3_clnt.c:980:
fetchmail: SSL connection failed.
fetchmail: socket error while fetching from
fetchmail: Query status=2 (SOCKET)

wget -O equifax.pem [URL]
Both of the certificate files have permissions of 644 and user is tim
Unless I'm wrong, the key message is
Server certificate verification error: unable to get local issuer certificate

Posted: 10-06-2010, 06:17 PM

View 4 Replies!   View Related
General :: Get A Certificate Error 60: "server Certificate Verification Failed" When Trying To Setup A Ubuntu Cloud?
I'm trying to install an Ubuntu cloud on my home network - I've been following this guide. When I arrived at STEP 6: Install an image from the store PART 3: Click on the Store tab I get the following error message on the page: Error 60: server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none

Posted: Aug 24 at 13:38

View 1 Replies!   View Related
Security :: LDAP Can't Bind "certificate Verify Error"
this is not on the master node, but rather the node that is being replicated to. The problem occurs when i query using ldapsearch or an `getent passwd` EG ldapsearch:


[root@cakeslave ~]# ldapsearch -x -b 'cn=Christian Unger,ou=People,dc=example,dc=org' -D "cn=replica,dc=example,dc=org" -H ldaps:// -w cakewalk
ldap_bind: Can't contact LDAP server (-1)
additional info: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed


The cacert.pem in /etc/ssl/certs and /etc/openldap/certificate are identical (check using md5sum). I have done an strace and found that it looks at /etc/pki/tls/cert.pem .

Posted: 04-14-2010, 07:02 PM

View 6 Replies!   View Related
Security :: SSH User Authentication Using Certificate
I was trying to configure user authentication in SSH using certificate method.As u all know the usual way of authentication is using the ssh-keygen method. But i want the another method where we create a certificate key and send it to the CA, which signs it and send back etc etc.I cannot find any unique procedure in the net to configure this method.

Posted: 03-19-2010, 06:50 AM

View 3 Replies!   View Related
Security :: Getting Rid Of Certificate Requirement In MUTT
When running MUTT on a RHEL 5.4 box, I get the message:
Server certificate has expired

This certificate belongs to:



I choose "accept always", but the same message appears next time. I do not wish to have a certificate requirement for MUTT and did not intentionally set the program up to include this feature. How can I get rid of it? My second choice would be to get a new certificate, but then I have to go through this every year. I have MUTT working on two other servers and this does not happen.

Posted: 04-07-2010, 09:46 AM

View 3 Replies!   View Related
Fedora Security :: How To Add An Existing Certificate
How can I add an existing certificate (pem format) as trusted in Fedora via the command line?Do I have to copy the files to a certain keystore? Where does Fedora store the trusted certificates

Posted: 14th April 2011, 12:21 PM

View 2 Replies!   View Related
Fedora :: Invalid Security Certificate?
Got F13 installed yesterday, this afternoon I suddenly started getting Secure Connection Failed warnings. I'm not sure whose problem it is because it mentions uses an invalid security certificate.This certificate is only valid for * Code: ssl_error_bad_cert_domain)It continues to say that someone could be impersonating the actual server. I am still receiving mail through google and my google calendars seem to be working. I do use OpenDNS for my DNS instead of my ISPs (Comcast which would very often slow down) and obviously I use IMAP mail with google on Thunderbird. So is it google, or OpenDNS, or Thunderbird that has a problem. Firefox does not seem to have a problem

Posted: 15th June 2010, 10:55 PM

View 2 Replies!   View Related
Fedora Security :: View The Currently Used Certificate?
I am having issues with using OpenSSL. How do I view the currently used certificate? Also, do you know of a good site that has instructions on how to install a certificate. The previous user installed a GoDaddy cert for an FTP server and I need to update it because it's expiring real soon.

Posted: 2nd April 2009, 06:51 PM

View 10 Replies!   View Related
General :: Open SSL Installed - Certificate Generation Fails
I have a problem related with certificate generation. I had successfully installed openssl. After that I do these.

[root@localhost openssl-1.0.0a]# cd /usr/local/ssl/misc
[root@localhost misc]# ./ -newca
CA certificate filename (or enter to create)

Making CA certificate ...
Generating a 1024 bit RSA private key
writing new private key to './demoCA/private/./cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:

You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank. For some fields there will be a default value,
If you enter '.', the field will be left blank.

Country Name (2 letter code) [GB]:IN
State or Province Name (full name) [Berkshire]:KERALA
Locality Name (eg, city) [Newbury]:KOCHI
Organization Name (eg, company) [My Company Ltd]:squad
Organizational Unit Name (eg, section) []:SUPPORT
Common Name (eg, your name or your server's hostname) []:localhost
Email Address []

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:mahhghh
An optional company name []:mca
Using configuration from /etc/pki/tls/openssl.cnf
Enter pass phrase for ./demoCA/private/./cakey.pem:
I am unable to access the ../../CA/newcerts directory
../../CA/newcerts: No such file or directory
Distro:Centos 5.3 kernel 2.6.18

Posted: 06-25-2010, 05:31 AM

View 1 Replies!   View Related
Security :: Invalid (Untrusted) Certificate - TWC Webmail
At the login webpage of <[URL]>, the Time Warner Cable (TWC) Webmail site, I am immediately confronted with a warning that the Security Certificate is invalid & that the site is untrusted. This occurs with Firefox, Seamonkey, & Konqueror. This does not occur on Microsoft or Apple systems; I have checked other colleagues machines. I have manually overridden the warning & everything functions fine. I have contacted TWC & am awaiting their tests. But, I would like some independent corroboration from other users in the Linux community. Could some of you perform the test yourself on this URL? An error will be readily apparent.

Posted: 10-07-2010, 05:37 PM

View 14 Replies!   View Related
Fedora Security :: Sshd With Both Certificate AND Password After Each Other?
I want to enable sshd from Internet, but I want to secure it as much as possible.Therefore, despite the fact that the service will run on a tcp port above 2000 to prevent most scans, I would like to :- First, force the use of a client certificate, to avoid brute force attack on my users/passwords- second force the use of a username/password to avoid someone having access to my system just by stealing my key..When I look at the configuration, it's possible to enable both, but one of them is sufficient to login, but I can't find how to make them both mandatory...

Posted: 9th March 2011, 05:31 PM

View 2 Replies!   View Related
Ubuntu Security :: Forged CA Certificate In Firefox 3.6
Having read how a private company is providing governments (and probably criminals) with a box that can listen in on SSL traffic by the use of forged CA certificates - [URL]. It turns out there's already a forged certificate in Firefox 3.6.
Go to Edit>Preferences>Advanced>Encryption>View Certificates and look for 'Equifax Secure Inc.' - You should see a proof-of-concept rogue certificate called 'MD5 Collisions Inc.' and a link to phreedom which explains the method used to generate it. That little lock doesn't necessarily mean that you're safe...

Posted: March 25th, 2010

View 4 Replies!   View Related
Ubuntu :: Localhost Uses Invalid Security Certificate (Self Assigned)
I just upgraded from Ubuntu 8.10 to 9.04. I installed Webmin 1.470 but when I tried to run it from Firefox 3.09 I got the following message.

localhost:10000 uses an invalid security certificate. The certificate is not trusted because it is self signed. (Error code: sec_error_untrusted_issuer).

Never had this problem with Ubuntu 8.04.

Posted: 04-25-2009, 02:50 PM

View 9 Replies!   View Related
Fedora Security :: Rkhunter Error - Can't Open File
why I can't open this file.

[root@localhost fedora]# gedit /etc/var/log/rkhunter/rkhunter.log No protocol specified (gedit:24869): Gtk-WARNING **: cannot open display: :0.0 [root@localhost fedora]# gedit /var/log/rkhunter/rkhunter.log No protocol specified

There is absolutely no reason why it can't be opened. I opened it just fine earlier and now it won't open up for inspection.

Posted: 4th June 2009, 09:05 AM

View 7 Replies!   View Related
Software :: Firefox Claims Invalid Security Certificate For Website
I get an Untrusted Connection error when I visit this site to login into my GRE account, and I cannot add it as an exception, in Mozilla Firefox 4.0 on Ubuntu 11.04. When I visit the site using Chrome, I have no issues. Is this a bug in Firefox's certificate management? I'm using Ubuntu 11.04. I do not get this error in Windows' Firefox 4.0.

Posted: 05-19-2011, 08:54 AM

View 3 Replies!   View Related
Security :: How To Renew Existing SSL Certificate Using By Genkey In Fedora Core 7
I am trying to renew the existing SSL certificate by using genkey for our shopping website. i havent seen any information how to generate a new certificate for. Is any one could tell me how to change SSL certificates?

Posted: 01-04-2010, 10:22 PM

View 4 Replies!   View Related
Ubuntu :: Gmail Will Not Open In Any Browser Except Firefox
For more than a week now, and Gmail is not opening. I was using Chromium, then tried Epiphany, Google chrome, even Midori; but it only opens with Firefox!! Am I the only one?

Posted: August 22nd, 2010

View 4 Replies!   View Related
Security :: How To Block Attachments To Gmail
I was wondering how to block attachments to gmail. I am running squid 2.7 stab9 with dansguardian 2.10, users authenticated from LDAP. I have configured the POST restrictions in Dansguardian which does block all attachments to hotmail/yahoo etc etc but attachments to gmail continue to upload.

Posted: 05-07-2010, 08:07 AM

View 1 Replies!   View Related
CentOS 5 :: Install CA Certificate To Certificate Database?
I'm following a book (Mastering OpenLDAP) to install and setup OpenLDAP on CentOS, however this book is written for Debian, so some steps do not fit. Here's one, in order to setup TLS, I need CA certificate and server certificate and key. The book said in order to install the CA certificate, I should copy it to /usr/share/ca-certificates and run update-ca-certificates, obviously this doesn't work for CentOS. So I wonder what's the correct way to install CA certificate on CentOS? I suspect I can make OpenLDAP work without the installation, since in webmin configuration it only asks for the location of the certificate file, so I can stick it anywhere? Or is there a system wide certificate database I need to update?

Posted: 2008/8/21 13:32

View 2 Replies!   View Related
Security :: Block Only Gmail Access Through Https?
My Problem is: I want to stop gmail access without blocking https. Yes in my squid proxy normal is not accessible. But gmail recently started https service by which user can still get access to gmail. I DONT WANT TO STOP https CAUSE ITS BEING USING BY MY COMPANY GOOGLE MAIL PROGRAM.

Posted: 11-05-2010, 03:45 AM

View 2 Replies!   View Related
Security :: Gmail Chat Block By Squid?
how to disable the gmail chat? My means to say that when we login to gmail , after that the chat will open, I want to disable that chat. am using Redhat 9 and squid stable 2.5 version. I have tried the things mentioned below, but chat is still working.


Posted: 01-17-2010, 11:00 PM

View 1 Replies!   View Related
General :: When Try Https Get Certificate Error?
I am using the curl version 7.21.0. When I try the curl command from command like, things works fine for the http sites. But when I try https I get certificate error. I have source compiled curl with latest OpenSSL. I have also tried downloading the latest certificate bundle. With the same version of curl, same version of openssl with same certificate file I can get it work on the linux. But in the QNX OS I get this error.

./curl --cacert /mnt/temp/curl-ca-bundle.crt -v
* About to connect() to proxy port 8080 (#0)
* Trying connected


Posted: 07-13-2010, 11:26 PM

View 1 Replies!   View Related
Copyright 2005-08, All rights reserved