Fix: Verisign's 2009 ROOT certificate is missing, so download it an install it.
1) Copy the Root CA from Symantec: https://knowledge.verisign.com/support/ssl-certificates- support/index?page=content&id=AR1556 2) Save to a file like verisign2009.crt in "/usr/local/share/ca-certificates/" $ sudo vi /usr/local/share/ca-certificates/verisign2009.crt 3) Update the certificate stor $ sudo update-ca-certificates Now all of the above https site work fine, at least on 12.04. The procedure is same for any custom CA certs that one needs to add. /usr/local/share/ca-certificates/ is normally empty. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1014640 Title: 12.04/openssl refusing some verisign certified sites To manage notifications about this bug go to: https://bugs.launchpad.net/openssl/+bug/1014640/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
