maemo.org - Talk
Page 13 of 13 « First 31112 13
Show 40 post(s) from this thread on one page

maemo.org - Talk (https://talk.maemo.org/index.php)
-   MeeGo / Harmattan (https://talk.maemo.org/forumdisplay.php?f=45)
-   -   Re-commissioning N9 in 2018 (https://talk.maemo.org/showthread.php?t=100215)

monkeyisland 2021-10-04 17:14
Re: Re-commissioning N9 in 2018
 
hi there today i cant connect with my n9 to openrepos.net via warehouse is there a solution?:(

Maemish 2021-10-04 21:29
Re: Re-commissioning N9 in 2018
 
Fro another thread "How I got my N900 back on https..."

Quote:
Originally Posted by Danct12 (Post 1572685)
On September 30 2021, DST Root CA X3 expired which affected a lot of websites including my email provider and TMO.

But I decided not to give up so I started looking into it. Apparently ISRG Root X1 is added in a CSSU update (i'm on testing) but for some reason it ignored the existent of the CA.

After some further digging, I found this note on updating certs so I tried it: parse certdata.txt, transfer certs folder to MyDocs and run cmcli as said, still doesn't work

So out of the blue I decided to just google "isrg root x1" and check out Let's Encrypt Chain of Trust.
On that page I found root certificates along side with it's PEM files, there's another version with it cross-signed with DST X3 and that's something I never tried before as most of the certs on the device are self signed.

I downloaded it and installed it on the device, lo and behold, TMO now loads on my N900 without an error and my email now works again!

For good measure, I installed the ISRG X2 cert as well. Now my N900 on Fremantle is useful again.
But if you can't find help from this change your date in your device to 29. september and try again openrepos.

dredlok706 2022-06-29 12:15
Re: Re-commissioning N9 in 2018
 
Awesome thread!

Halftux 2022-07-12 23:10
Re: Re-commissioning N9 in 2018
 
3 Attachment(s)
New updated root certificate package. This package will delete all installed certificates. Then it will install all certificates which are inside this package. So I added certificates from Mozilla.

https://ccadb-public.secure.force.com/mozilla/IncludedCACertificateReport

These certs where converted to pem. It was not possible with all certificates.
I will attach the script which I used. It converts the crt to pem and reads the subject key identifier and renames the file with the id.

certs_2022_refresh.txt - all certificates in the package.
converted.txt - all mozilla certificates which are converted
makecert.sh - script for conversion

new common-ca package:
aegis-certman-common-ca_1.0.8+0m8_all_2022_refresh.deb

This is the old post related to this update:
https://talk.maemo.org/showpost.php?...9&postcount=94


All times are GMT. The time now is 09:36.
Page 13 of 13 « First 31112 13
Show 40 post(s) from this thread on one page

vBulletin® Version 3.8.8