Ubuntu Jaunty Certificate Issue Solved

7 Jul 2009


      Hi,
Ubuntu distributes a patched version of GNUtls 2.6.x.
Run:
gnutls-cli -VV --print-cert -p 636 my-ldap-server.com 2>&1 | egrep 'RSA-MD5|warning'
See no output.  Using "-d 4711" instead of "-VV" doesn't show any problems either.
Download the real GNUtls 2.8.1 and build it and try again:
Run:
/opt/gnutls/bin/gnutls-cli -VV --print-cert -p 636 my-ldap-server.com 2>&1 | egrep 'RSA-MD5|warning'
        Signature Algorithm: RSA-MD5
warning: signed using a broken signature algorithm that can be forged.
Note that the CA cert is secure, it's the LDAP server's cert that was weak.
-Ken

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Ubuntu Jaunty Certificate Issue Solved