Gentoo Archives: gentoo-user

From:	Mick <michaelkintzios@×××××.com>
To:	gentoo-user@l.g.o
Subject:	[gentoo-user] Duplicate ca certs
Date:	Sun, 17 Aug 2008 09:39:38
Message-Id:	`200808171039.30832.michaelkintzios@gmail.com`

1	Hi All,
2
3	I am getting mixed up with update-ca-certificates. It reports that I have
4	duplicates:
5	=================================================
6	# update-ca-certificates
7	Updating certificates in /etc/ssl/certs....WARNING: SPI_CA_2006-cacert.pem
8	does not contain a certificate or CRL: skipping
9	WARNING: Verisign_Class_1_Public_Primary_OCSP_Responder.pem does not contain a
10	certificate or CRL: skipping
11	WARNING: cacert.org.pem does not contain a certificate or CRL: skipping
12	WARNING: Skipping duplicate certificate QuoVadis_Root_CA.pem
13	WARNING: Skipping duplicate certificate Verisign_RSA_Secure_Server_CA.pem
14	WARNING: Skipping duplicate certificate
15	America_Online_Root_Certification_Authority_1.pem
16	WARNING: Skipping duplicate certificate
17	America_Online_Root_Certification_Authority_2.pem
18	WARNING: Verisign_Class_3_Public_Primary_OCSP_Responder.pem does not contain a
19	certificate or CRL: skipping
20	WARNING: Skipping duplicate certificate thawteCb.pem
21	WARNING: Skipping duplicate certificate Wells_Fargo_Root_CA.pem
22	WARNING: Skipping duplicate certificate thawteCp.pem
23	WARNING: Skipping duplicate certificate vsign3.pem
24	WARNING: spi-ca.pem does not contain a certificate or CRL: skipping
25	WARNING: Verisign_Secure_Server_OCSP_Responder.pem does not contain a
26	certificate or CRL: skipping
27	WARNING: Skipping duplicate certificate aoltw1.pem
28	WARNING: Skipping duplicate certificate aoltw2.pem
29	WARNING: Verisign_Class_2_Public_Primary_OCSP_Responder.pem does not contain a
30	certificate or CRL: skipping
31	done.
32	Running hooks in /etc/ca-certificates/update.d....done.
33	=================================================
34
35	However, when I check for e.g. vsign3.pem I see this:
36
37	# ls -la /etc/ssl/certs/vsign*
38	-rw-r--r-- 1 root root 984 Jun 1 09:43 /etc/ssl/certs/vsign1.pem
39	-rw-r--r-- 1 root root 989 Dec 4 2005 /etc/ssl/certs/vsign2.pem
40	-rw-r--r-- 1 root root 984 Jun 1 09:43 /etc/ssl/certs/vsign3.pem
41	-rw-r--r-- 1 root root 976 Jun 1 09:43 /etc/ssl/certs/vsignss.pem
42	-rw-r--r-- 1 root root 1084 Dec 4 2005 /etc/ssl/certs/vsigntca.pem
43
44	Also, what should I do with those that report "does not contain a certificate
45	or CRL: skipping"?
46	--
47	Regards,
48	Mick

Attachments

File name	MIME type
signature.asc	application/pgp-signature

Replies

Subject	Author
Re: [gentoo-user] Duplicate ca certs	Albert Hopkins <marduk@×××××××××××.org>

Report Message

Find on MARC Find on Google Groups