Join GitHub today
GitHub is home to over 20 million developers working together to host and review code, manage projects, and build software together.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
Already on GitHub? Sign in to your account
Google Chrome reports bitcoin.org site as insecure on Debian #998
Comments
|
@drazisil thanks for following up on this! Everyone: although this issue isn't our fault, I suggest that we keep it open until it's fixed so that anyone else who encounters it can reference this issue. I've subscribed to that Debian bug and when it closes, I'll ping @drazisil to re-test. Until then, I'm going to tag this as Needs More Info. |
harding
added
the
Need more info
label
Aug 4, 2015
|
Sorry for the delay in responding to this. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774195 was closed Wed, 19 Aug 2015, I have updated nss and tested that bitcoin.org shows as secure, closing issue. |
drazisil
closed this
Sep 14, 2015
|
@drazisil thanks a ton for updating this! I subscribed to the bug, but I must've confused the close email for something else because I don't recall seeing it. Thanks again! |
drazisil commentedAug 4, 2015
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774195
There is a bug in Debian (jessie) that causes NSS-based browsers such as Chrome to prefer SHA-1 certs over SHA-2. In Chrome this leads to reporting the site as insecure.