Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(ca): outdated authorities / #445 #446

Closed
wants to merge 2 commits into from
Closed

Conversation

faust64
Copy link

@faust64 faust64 commented Sep 30, 2021

Refresh cacert.pem, based on a recent copy
includes some script, as an FYI.

@ahukkanen
Copy link

Great work!

For future (for the maintainers), I would also suggest primarily checking the existence of the system root CAs and only when they are not available, use the ones shipped with the gem.

This gem seems to be a dependency for quite a few other gems.

@miry
Copy link

miry commented Oct 1, 2021

duplicate #444

-----END CERTIFICATE-----

Certigna
========
DST Root CA X3
Copy link

@Tensho Tensho Oct 5, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As I see from the latest Mozilla bundle there is no DST Root CA X3 cert in it, because it's essentially expired on 30 Sep 2021. So this bundle should not work for Lets Encrypt intermediate certs, which are cross-signed with DST Root CA X3. 🤔

@faust64 faust64 closed this Oct 6, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants