Bug#845989: [Pkg-privacy-maintainers] Bug#845989: browser can't be downloaded because of invalid SSL certificate
On 2016-11-27 09:30:21, Mikhail Kshevetskiy wrote: > Package: torbrowser-launcher > Version: 0.2.6-2 > Severity: grave > Tags: upstream > > Trying to start torbrowser for the first time produce the following message > > The SSL certificate served by https://www.torproject.org is invalid! > You may be under attack. > > After that the program terminate. Running it from terminal results in the > following console output: > > Tor Browser Launcher > By Micah Lee, licensed under MIT > version 0.2.6 > https://github.com/micahflee/torbrowser-launcher > Downloading over Tor > Downloading and installing Tor Browser for the first time. > Downloading > https://dist.torproject.org/torbrowser/update_2/release/Linux_x86_64-gcc3/x/en-US > Download error: [ routines', 'ssl3_get_server_certificate', 'certificate verify failed')]>] > I have seen a similar error recently, restarted the browser, and it went away. This could potentially be a hostile exit node doing SSL interception. Workaround: restart the browser. Fix: use a hidden service for dist.torproject.org Optionally: identify the exit node and take it down -- My passionate sense of social justice and social responsibility has always contrasted oddly with my pronounced lack of need for direct contact with other human beings and communities. I am truly a "lone traveler" and have never belonged to my country, my home, my friends, or even my immediate family, with my whole heart; in the face of all these ties, I have never lost a sense of distance and a need for solitude. - Albert Einstein
Bug#845989: browser can't be downloaded because of invalid SSL certificate
Package: torbrowser-launcher Version: 0.2.6-2 Severity: grave Tags: upstream Trying to start torbrowser for the first time produce the following message The SSL certificate served by https://www.torproject.org is invalid! You may be under attack. After that the program terminate. Running it from terminal results in the following console output: Tor Browser Launcher By Micah Lee, licensed under MIT version 0.2.6 https://github.com/micahflee/torbrowser-launcher Downloading over Tor Downloading and installing Tor Browser for the first time. Downloading https://dist.torproject.org/torbrowser/update_2/release/Linux_x86_64-gcc3/x/en-US Download error: [] -- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.8.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=ru_RU.UTF8, LC_CTYPE=ru_RU.UTF8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Init: systemd (via /run/systemd/system) Versions of packages torbrowser-launcher depends on: ii ca-certificates 20161102 ii gnupg2.1.16-2 ii python-gtk2 2.24.0-5.1 ii python-lzma 0.5.3-3 ii python-parsley 1.2-1 ii python-psutil4.3.1-1 ii python-twisted 16.5.0-1 ii python-txsocksx 1.15.0.2-1 pn python:any ii wmctrl 1.07-7 Versions of packages torbrowser-launcher recommends: ii tor 0.2.8.9-1 Versions of packages torbrowser-launcher suggests: pn apparmor pn python-pygame -- no debconf information
