Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[bob]

Instead of looking for the CA certificates (which allow https to work in MC) in the usual debian location of /etc/ssl/certs/ca-certificates.crt we look for them in MC's application directory now (using the package symlink) at /usr/lib/jriver/MC25/ca-certificates.crt, that is a symlink to /etc/ssl/certs/ca-certificates.crt.

If you are running on a non-debian based system you can do one of the two following things:
1) Change the /usr/lib/jriver/MC25/ca-certificates.crt symlink to point to the one for your distro
or
2) Change that symlink to local-ca-certificates.crt in the same /usr/lib/jriver/MC25 directory. This local copy is the created on the packaging system here when the .deb is created.

[BryanC]

To clarify, /usr/lib/jriver/MC25/local-ca-certificates.crt is checked before /usr/lib/jriver/MC25/ca-certificates.crt? So if we don't want to mess with the packaged files we should symlink /usr/lib/jriver/MC25/local-ca-certificates.crt to /etc/ssl/certs/ca-certificates.crt (or wherever the system certificate resides)?

[bob]

To clarify, /usr/lib/jriver/MC25/local-ca-certificates.crt is checked before /usr/lib/jriver/MC25/ca-certificates.crt? So if we don't want to mess with the packaged files we should symlink /usr/lib/jriver/MC25/local-ca-certificates.crt to /etc/ssl/certs/ca-certificates.crt (or wherever the system certificate resides)?

Unfortunately gnutls will only use one ca cert file. If you have the system ca-certificates.crt file (some systems don't have it) and it's NOT in /etc/ssl/certs/ca-certificates.crt you symlink to that.
If you don't have it, you symlink to the local copy /usr/lib/jriver/MC25/local-ca-certificates.crt