Re: Invalid certificate authority signature
El día Saturday, November 20, 2010 a las 08:21:08PM +, Brian Morrison escribió: On Fri, 19 Nov 2010 07:32:40 -0600 Jennifer Ray j...@lgdpc.com wrote: Hello, I LOVE using Pidgin WAY better than IM. Please tell me how I can fix this. I have been all over the website trying to find the FIX for this issue. Can you please point me in the right direction? This just started yesterday morning and wouldn't allow me in all day until all of a sudden yesterday afternoon I was able to get in. But now this morning same thing. The answer can be found here: http://developer.pidgin.im/ticket/12906#comment:39 It's not too difficult a process, but make sure that the .pem files you download are renamed to remove the string before Microsoft_* in their filenames. If you need further help, please ask Hello Brian, I've downloaded and installed the certificates and they are read on start of pidgin: # cd /usr/local/share/purple/ca-certs # ls -lutr M* -rw-r--r-- 1 guru wheel 6153 21 nov 10:00 Microsoft_Secure_Server_Authority_2010.pem -rw-r--r-- 1 root wheel 2202 21 nov 10:00 Microsoft_Secure_Server_Authority.pem -rw-r--r-- 1 guru wheel 5764 21 nov 10:00 Microsoft_Internet_Authority_2010.pem -rw-r--r-- 1 root wheel 1809 21 nov 10:00 Microsoft_Internet_Authority.pem But, sometimes it still gives the error message about could not validate the certificate for omega.contacts.msn.com, sometimes it works after a few retries; what I am missing? This is with 2.6.2 on FreeBSD 8.x Thanks matthias -- Matthias Apitz t +49-89-61308 351 - f +49-89-61308 399 - m +49-170-4527211 e g...@unixarea.de - w http://www.unixarea.de/ ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Invalid certificate authority signature
Matthias Apitz wrote: This is with 2.6.2 on FreeBSD 8.x I was under the impression that Microsoft broke support for that version many months ago. Remember that Microsoft doesn't want people to use unapproved clients. -- David Woolley Emails are not formal business letters, whatever businesses may want. RFC1855 says there should be an address here, but, in a world of spam, that is no longer good advice, as archive address hiding may not work. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Pidgin SSL-certificate error
Hello, I have read the FAQ on the pidgin side, but I don't understand the instructions at all. My version of pidgin is giving an error that says exactly this: The certificate for omega.contacts.msn.com could not be validated. The certificate chain presented is invalid. I have not the faintest Idea what I should do about this. I tried restarting both pidgin and the computer, but neither of these things worked. I'm not about to mess with anything I don't know about, so I didn't try anything else. Is there anyone who can explain to me how I can solve this? Thanks in advance, Komiyan ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Erro in Certificate
The comments are not numbered on the web page referenced. Please re-post this answer and provide some visible context for which of the comments you really mean by #39. Thanks! John Bailey wrote: On 11/20/2010 09:36 AM, Roberto Vercesi Gugisch wrote: Two days since there has been an error in certificate validation! The certificate for omega.contacts.msn.com http://omega.contacts.msn.com could not be validated. The certificate chain presented is invalid. How can I fix this? http://developer.pidgin.im/ticket/12906#comment:39 On Windows the path referenced is normally something like C:\Program Files\Pidgin\ca-certs (or Program Files (x86) on 64-bit machines). John ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Erro in Certificate
Fluteman wrote: The comments are not numbered on the web page referenced. Please re-post this answer and provide some visible context for which of the comments you really mean by #39. The one that all browsers that I know of will put at the top of the screen if you follow the link provided. John Bailey wrote: http://developer.pidgin.im/ticket/12906#comment:39 -- David Woolley Emails are not formal business letters, whatever businesses may want. RFC1855 says there should be an address here, but, in a world of spam, that is no longer good advice, as archive address hiding may not work. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Pidgin SSL-certificate error
Carlijn Gerrits wrote: I have read the FAQ on the pidgin side, but I don't understand the instructions at all. Microsoft have messed up a security feature of the site. If you don't understand what you are doing, you should get someone you personally trust, and who is competent, to make the changes. The mechanism in question is about giving you a high level of certainty that you are dealing with the actual MSN server. You do not have that level of certainty that the information that you receive on this list or from the bug tracker is actually coming, unaltered, from those. You need to make an informed risk assessment before following any instructions. I have not the faintest Idea what I should do about this. I tried restarting both pidgin and the computer, but neither of these things worked. Restarting the computer is a sledge hammer approach, and generally will not work if the problem is a real problem introduced by a change made at either end, and in particular, in this case, one made at the remote end. The official client was probably updated, securely, in advance of this change, and, as Microsoft don't approve of the use of third party, open source, clients, they probably don't care that they have broken access from Pidgin. -- David Woolley Emails are not formal business letters, whatever businesses may want. RFC1855 says there should be an address here, but, in a world of spam, that is no longer good advice, as archive address hiding may not work. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Pidgin 2.7.3 on Maemo5 - SSL certificates for MSN invalid
On Sun, Nov 21, 2010 at 02:35:14PM +0100, Marvin Crazy Al Jansen wrote: Dear sir/madam, as you probably know, Pidgin on Maemo has been having difficulties with the MSN certificates, omega.contacts.msn.com in particular. I tried fixing this by searching on Google, but it did me no help. The two most useful sites were on maemo.org (http://talk.maemo.org/showthread.php?t=65926highlight=pidgin+certificate) and on tweakers.net (http://gathering.tweakers.net/forum/list_message/35061610#35061610) (Dutch). Basically, I'm stuck. According to these I would need to delete the omega.contacts.msn.com certificates and it would automatically redownload them, but this is not the case. Is there some way to fix this? Due to network issues (Yay netherlands!) the only working IM on N900 is Pidgin, and now I've lost that too. Is there a way to fix this? Kind regards, Marvin Jansen, The Netherlands I'm going to single you out becuase you are convenient not because you are different or worse than the other people. There have been any number of emails sent to this mailing list about this problem with a large number of responses containing the solutions. Please search before posting to avoid re-asking identical questions and requiring someone (like me) to decide whether taking the time to answer the question Yet Again is worth the time or whether leaving your email hang and hoping you find the other answers is an acceptable thing to do. To answer this again: http://developer.pidgin.im/wiki/MSNCertIssue If you are a member of those forums please post there indicating that the directions to replace the omega certificate directly are incorrect and that the correct instructions are available at the link I just gave you. -Etan ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Pidgin 2.7.3 on Maemo5 - SSL certificates for MSN invalid
Etan Reisner wrote: To answer this again: http://developer.pidgin.im/wiki/MSNCertIssue As this is telling people to do something potentially dangerous, I think it should also tell them to check that the issuer and subject on each certificate is different, i.e. that they are not being fed a potentially bogus root certificate. It may be safe to fetch the intermediate certificates from an untrusted source, but only if they really are only intermediate ones. At least I think that is true, but it is possible that openssl will stop when it finds a locally trusted intermediate certificate, in which case they need to verify the certificate chain before installing them. I know that some browsers will accept a locally trusted leaf certificate, even though they don't trust the corresponding root. -- David Woolley Emails are not formal business letters, whatever businesses may want. RFC1855 says there should be an address here, but, in a world of spam, that is no longer good advice, as archive address hiding may not work. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Pidgin 2.7.3 on Maemo5 - SSL certificates for MSN invalid
On Sun, Nov 21, 2010 at 04:45:34PM +, David Woolley wrote: Etan Reisner wrote: To answer this again: http://developer.pidgin.im/wiki/MSNCertIssue As this is telling people to do something potentially dangerous, I think it should also tell them to check that the issuer and subject on each certificate is different, i.e. that they are not being fed a potentially bogus root certificate. It may be safe to fetch the intermediate certificates from an untrusted source, but only if they really are only intermediate ones. At least I think that is true, but it is possible that openssl will stop when it finds a locally trusted intermediate certificate, in which case they need to verify the certificate chain before installing them. I know that some browsers will accept a locally trusted leaf certificate, even though they don't trust the corresponding root. People don't understand certificates. At all. Which is why they were perfectly willing to download certificates for the omega server from any blog/host that happened to have them up. That page is hosted on the pidgin.im server, the pem files come from the pidgin source, those exact files will be in the next release of pidgin which people will implicitly trust when they upgrade, etc. Any text talking about verifying things is going to complicate and confuse the situation more than I think it could possibly help though I do appreciate the thinking that goes into requesting it. I'm open to adding a note to the bottom explaining the potential dangers with doing this sort of thing but anything more than that I think would be too much. -Etan ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Pas dans la liste du serveur
Bonsoir, Je vous sollicite afin de maider. Je viens dinstaller pidgin version 2.7.5 sur mon pc qui possède Windows xp. Malheureusement, je rencontre un problème avec certaines adresses. En effet, je possède une adresse en yahoo.fr et lorsque jajoute des comptes hotmail.com, le message suivant apparaît : État: Pas dans la liste du serveur Erreur à la récupération du profil. Désolé, ce profil a l'air d'être dans une langue ou un format non supporté pour l'instant. Je vous remercie de votre aide. Cordialement. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
ICQ contacts appear offline
I have been using Pidgin 2.7.5 on Windows 7 for about a week without any problems until now. Since yesterday my contacts are appearing as offline even though they are actually online, and I am also appearing offline to them and we both use Pidgin. Any ideas on what to do? I have already tried disabling and re-enabling the account as well as signing out and back in. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Pidgin 2.7.6 released!
Pidgin 2.7.6 has been released! Among the changes are that we now support MSNp16, including multiple login support. Additionally, we have started distributing a couple new certificates needed to solve the latest MSN certificate disaster. Enjoy! John signature.asc Description: OpenPGP digital signature ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
problem with signing in
Hello, I can´t sign in almost a week now. If i try to sign in I get his note: Unable to validate certificate The certificate for omega.contacts.msn.com could not be validated. The certificate chain presented is invalid. What that means? I already downloaded a newest version, and I still can´t sign in. I use Pidgin almost 2 years, and this is a first time, if the error occure. Ene ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
Re: problem with signing in
paha wrote: What that means? I already downloaded a newest version, and I still The newest version was announced a little over an hour before you posted this, and should compensate for the recent Microsoft change to the MSN service. Before this there were many reports, on the mailing list, bug tracker, and probably main web site, explaining the problem. If you are not talking about MSN, please identify the service into which you cannot login. can´t sign in. I use Pidgin almost 2 years, and this is a first time, if the error occure. -- David Woolley Emails are not formal business letters, whatever businesses may want. RFC1855 says there should be an address here, but, in a world of spam, that is no longer good advice, as archive address hiding may not work. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: http://pidgin.im/cgi-bin/mailman/listinfo/support
