From owner-freebsd-stable@freebsd.org  Sun Sep 16 10:59:02 2018
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1030C109E47E
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Sun, 16 Sep 2018 10:59:02 +0000 (UTC)
 (envelope-from tech-lists@zyxst.net)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com
 [66.111.4.25])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 8E5678743C;
 Sun, 16 Sep 2018 10:59:01 +0000 (UTC)
 (envelope-from tech-lists@zyxst.net)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44])
 by mailout.nyi.internal (Postfix) with ESMTP id 93B4221F1E;
 Sun, 16 Sep 2018 06:58:55 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163])
 by compute4.internal (MEProxy); Sun, 16 Sep 2018 06:58:55 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zyxst.net; h=cc
 :content-transfer-encoding:content-type:date:from:in-reply-to
 :message-id:mime-version:references:subject:to:x-me-sender
 :x-me-sender:x-sasl-enc; s=fm3; bh=NkRq39BV9uyQCX+o2inoMuD02L51s
 0t1+cZf7ggXqhI=; b=0rHQ3bYhWy39lA3WxPWfNUZyVykRHTBBg1HKb/+3HK3b2
 1b1yCh+Qh0V9dMCrjnfcxG/8GslAcF3PqcYAB2j7fmaKUaX6YhqiSAVhXIbMHHJe
 tdTdXm0BiCJeXzs9cEj9f5bezirVUyv7dlm4Bg3cKqqELdgZ+8Wcis9sB8oARlWL
 BGjIM4NfeDdS1vQ15Vj4diKcW6oFA2zq6CTw8Tq/BlZT0kzsNzLZD4bGC5nK/LKa
 C17Qj0L3M/c/n5FrfyVz/IB24cVFSyWpxb7h8y5J0lK/fhtmY0SejXpu3NHEniyB
 je4fGftZuWocP1KrjAhTMj/lQILMX090V7lzsvrrQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
 messagingengine.com; h=cc:content-transfer-encoding:content-type
 :date:from:in-reply-to:message-id:mime-version:references
 :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=NkRq39
 BV9uyQCX+o2inoMuD02L51s0t1+cZf7ggXqhI=; b=DRLllYfol4ody4J/yyc+MF
 iy9+NjG1i7etv6sWIMhiIna/51vfKoSe/L8DUdy4q049b1PTd1puoHFYiP8mj0Cx
 IkGSYrwpYAkSXGg2GTW8zZme84EB10kwGKfy4n8zkDj5WDki42MWt6hzRnNQij2o
 pxPxJq26wMXLnSsXHtWtcrP8hv7wLLP4OUAW+ntfOcnDL5zPRUS/NrVmANs2iD9J
 c14dkL8Ljc+t818/0rguGJyvAfsOI8kOMk1luZBDFLweJAEfK45I8kUow5JKU8IY
 8MtQxDNjVJPL9Iym9JbXiwSie/PK88SiQ87ac4awtOecOLYXyLPyX0I7a8yjnxzQ
 ==
X-ME-Proxy: <xmx:bzeeWwS8YX475Iud-9BjRlQv6tIdmXyRa3OUy9wlGtinBhE26-Uqiw>
 <xmx:bzeeW0_rEy2KhmZWLSZBHOuSEF1R07_47QSaCLmyn6NEaC1kqUVKbA>
 <xmx:bzeeWyMhFy61P0WEvXFimFnBoTPHMF6W54ZcjyKVq2bcxxXTOXNRJA>
 <xmx:bzeeW8v3ZGjG-aDw6MK2ZgH_BJs7Ut1XS6RsTSNHYzMomVu0DbRcmg>
 <xmx:bzeeWx1j8KK6sf7Aw7bM78FaxQRFPYqh4TAt0AqbKyuWJG4mjjPOfg>
 <xmx:bzeeW4Ka-yOhR7tKTSizp4xqmyAMPaezGVLiMIC8ewytSaNjUl0p2g>
X-ME-Sender: <xms:bzeeW8v0XpYZ9Dg9qB-wU3YUIzm-tzcGA2DsdctVcX_5nHX0PO-e1A>
Received: from desktop.local (parsley.growveg.org [82.70.91.97])
 by mail.messagingengine.com (Postfix) with ESMTPA id 7ECF0102A0;
 Sun, 16 Sep 2018 06:58:54 -0400 (EDT)
Subject: Re: Error validating server certificate
To: Glen Barber <gjb@freebsd.org>,
 "Montgomery-Smith, Stephen" <stephen@missouri.edu>
Cc: "freebsd-stable@freebsd.org" <freebsd-stable@freebsd.org>
References: <f168a02e-8959-aa91-2190-8fbe6d61e07b@missouri.edu>
 <20180912143719.GQ24641@FreeBSD.org>
From: tech-lists <tech-lists@zyxst.net>
Organization: none
Message-ID: <03f42d93-57b0-062d-0fee-720c6444e58c@zyxst.net>
Date: Sun, 16 Sep 2018 11:58:53 +0100
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:60.0) Gecko/20100101
 Thunderbird/60.0
MIME-Version: 1.0
In-Reply-To: <20180912143719.GQ24641@FreeBSD.org>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Sep 2018 10:59:02 -0000

On 12/09/2018 15:37, Glen Barber wrote:
> On Wed, Sep 12, 2018 at 02:30:39PM +0000, Montgomery-Smith, Stephen wrote:
>> I did svn up just now in my /usr/src directory.  I got this message.
>> Should I worry about this?
>>
>> Error validating server certificate for 'https://svn.freebsd.org:443':
>>   - The certificate is not issued by a trusted authority. Use the
>>     fingerprint to validate the certificate manually!
>> Certificate information:
>>   - Hostname: svn.freebsd.org
>>   - Valid: from Aug 29 20:26:55 2018 GMT until Nov 27 20:26:55 2018 GMT
>>   - Issuer: Let's Encrypt Authority X3, Let's Encrypt, US
>>   - Fingerprint: DC:AE:39:82:F5:32:DB:61:86:9E:B4:C7:C0:9C:EA:8C:08:7E:43:5A
> 
> You will not see this if you install the security/ca_root_nss port.
> 
> Glen
> 

Hi Glen,

Why is security/ca_root_nss not present in base?

I mean, on a brand new install, one goes to update the sources, and just 
the sources. And this error is issued?

I think it looks bad. Do you agree?

thanks,
-- 
J.