Hi there It seems to me that mozilla decided (for Version 10 at least) to only allow plugin updates from https sites signed by builtin CA. How are all the sogo user using automatic updates? Do you use official certs only? are there users of self made cert chains for the update server?
Regards Martin Am 19.03.2012 11:24, schrieb Martin (Lists): > Am 19.03.2012 11:10, schrieb Christian Mack: >> On 2012-03-19 08:16, Martin (Lists) wrote: >>> Hallo >>> >>> In the old thunderbird 3.1 days my automatic update was working. But >>> latest update was not provided to the clients. https server is setup >>> fine (logs do not indicate any error). Access log says that the right >>> files are used. >>> >>> In error console I get two warnings (may be one for each sogo plugin): >>> >>> Warnung: WARN addons.xpi: Download failed: [Exception... "Certificate >>> issuer is not built-in." nsresult: "0x80004004 (NS_ERROR_ABORT)" >>> location: "JS frame :: resource://gre/modules/CertUtils.jsm :: checkCert >>> :: line 165" data: no] >>> Quelldatei: resource://gre/modules/CertUtils.jsm >>> Zeile: 165 >>> >>> I use https connection with self made certificates. root CA is imported >>> into thunderbird. >>> >>> Wat can I do to get updates working again? >>> >> >> Are you sure the CA certificate is in the CA store of thunderbird? >> I ask, because "Certificate issuer is not built-in." indicates it's not >> in there. > > I am really sure about this. My CA certificate is listed in the > certificate store. I have enabled all three settings (Mail crypt and > software signing). > > The difference is: most of the other certs have the crypt module builtin > and mine has the module software-security. > > Regards > Martin > >> >> >> Kind regards, >> Christian Mack >> > -- users@sogo.nu https://inverse.ca/sogo/lists
