[Cyberduck-trac] [Cyberduck] #8775: Previously added VeriSign intermediate certificates in Keychain causing trust errors
Cyberduck
trac at trac.cyberduck.io
Tue May 5 09:57:27 UTC 2015
#8775: Previously added VeriSign intermediate certificates in Keychain causing
trust errors
--------------------------+------------------------
Reporter: Nelson Minar | Owner: dkocher
Type: defect | Status: new
Priority: normal | Milestone:
Component: s3 | Version: 4.7
Severity: normal | Resolution:
Keywords: | Architecture:
Platform: |
--------------------------+------------------------
Comment (by dkocher):
I tried to replicate this issue with looking at the certificate chain from
`s3.amazonaws.com` and it looks like all intermediate certificates are now
current signed with 2048bits. Therefore even when these get added to the
`login.keychain` from versions prior to [milestone:4.7 4.7] this will no
longer cause trouble.
Users affected by this issue are advised to remove the weak intermediate
certificates from their login keychain.
[[Image(Verisign Certificate Chain.png)]]
--
Ticket URL: <https://trac.cyberduck.io/ticket/8775#comment:3>
Cyberduck <https://cyberduck.io>
Libre FTP, SFTP, WebDAV, S3 & OpenStack Swift browser for Mac and Windows
More information about the Cyberduck-trac
mailing list