From owner-freebsd-questions@freebsd.org  Wed Mar 30 09:41:11 2016
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1BC25AE1560
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Wed, 30 Mar 2016 09:41:11 +0000 (UTC)
 (envelope-from murk.fletcher@gmail.com)
Received: from mail-wm0-x231.google.com (mail-wm0-x231.google.com
 [IPv6:2a00:1450:400c:c09::231])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id AAB0A18CC
 for <freebsd-questions@freebsd.org>; Wed, 30 Mar 2016 09:41:10 +0000 (UTC)
 (envelope-from murk.fletcher@gmail.com)
Received: by mail-wm0-x231.google.com with SMTP id 20so62308991wmh.1
 for <freebsd-questions@freebsd.org>; Wed, 30 Mar 2016 02:41:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:date:message-id:subject:from:to;
 bh=cvfPLBbsQjqUQWLimbR+Dxbu/GTbZMEuRtWdEnfswag=;
 b=l7zMwUKBWnozjDGbiC6p6UrjJOLfr6B8nFnkDSu65EYLEtvv2lDnVBNXnMAjrLgnWr
 i7RqYMzubscq8jSoOJz+Pt2laO0txgsB7q4VXoHxO8Ll4UBmh7bNTLKinS0No7eH2Nmr
 Tgt9BQXJu3xSquukf4Ieqq/LGbwzhcEnbPg6YX8affKKi192hsUAy8hT3DA7KC4jdLpE
 pT4mIKbMXKIvozICx4mUfjXXmKsYs5qGlWqijVkfaFEaemmIYnn0H4lfogwHMjULU8Sb
 jZ3844gRysBbht5ebMhoRK8pGqLTgnQ1sbG74U580vq/snExmU/huJumxCXArDxtyYze
 2GUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:mime-version:date:message-id:subject:from:to;
 bh=cvfPLBbsQjqUQWLimbR+Dxbu/GTbZMEuRtWdEnfswag=;
 b=HS2ruznAAOiuOUDE8rylwj6zyBiwA9EZP190h5TSwClSAYp0ucJE03qhvRv4Ws8TWN
 35ZyEub1NAMmJOtgsgavnINAB6Risx++JPfIHFq+qqwPJwXmHT3V+LBbmftkeJd988Rh
 kfDL4wgxu5LOwnJOjVutK1Zc4XHV9e4qqmJumvRbC1XtwrgqXffHTNv3f9vAvn2FgBMn
 xTmpFdEaUUN+h2biK5nB/i90kvbh4JnJUcaP5QLTI9+ZkXsrfC5Rb7dBI069IEuiqMQe
 sMFCqDlDXkTvjbDKCGpx9HxLcnnb5TSN9jE2S9OHaYHhBjlQS+FA98IkdHfETY96zlJh
 /4HQ==
X-Gm-Message-State: AD7BkJIPlsL4G6/ZPse0WJjcE8AzarlahLVLFDh/eVi869GCe98c1Pmw/S8qZDXoEaNc2gpT2Jm2cHAH41WkQA==
MIME-Version: 1.0
X-Received: by 10.28.0.83 with SMTP id 80mr22750012wma.76.1459330869339; Wed,
 30 Mar 2016 02:41:09 -0700 (PDT)
Received: by 10.194.23.70 with HTTP; Wed, 30 Mar 2016 02:41:09 -0700 (PDT)
Date: Wed, 30 Mar 2016 11:41:09 +0200
Message-ID: <CAH=3fONDWOSwEqP7JCAA6VusruhJPzbfBx6yO+YHNht3fbtajg@mail.gmail.com>
Subject: Rails Assets and OpenSSL
From: Murk Fletcher <murk.fletcher@gmail.com>
To: User Questions <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.21
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Mar 2016 09:41:11 -0000

Hi!

Anybody here using http://rails-assets.org (to simplify JavaScript assets
in Rails) and know how to prevent this?

Simply renaming "https" to "http" didn't make a difference.

% bundle install
Fetching source index from https://rails-assets.tenex.tech/
Retrying source fetch due to error (2/3):
Bundler::Fetcher::CertificateFailureError Could not verify the SSL
certificate for https://rails-assets.tenex.tech/.
There is a chance you are experiencing a man-in-the-middle attack, but most
likely your system doesn't have the CA certificates needed for
verification. For information about OpenSSL certificates, see
bit.ly/ruby-ssl. To connect without using SSL, edit your Gemfile sources
and change 'https' to 'http'.
Retrying source fetch due to error (3/3):
Bundler::Fetcher::CertificateFailureError Could not verify the SSL
certificate for https://rails-assets.tenex.tech/.
There is a chance you are experiencing a man-in-the-middle attack, but most
likely your system doesn't have the CA certificates needed for
verification. For information about OpenSSL certificates, see
bit.ly/ruby-ssl. To connect without using SSL, edit your Gemfile sources
and change 'https' to 'http'.
Could not verify the SSL certificate for https://rails-assets.tenex.tech/.
There is a chance you are experiencing a man-in-the-middle attack, but most
likely your system doesn't have the CA certificates needed for
verification. For
information about OpenSSL certificates, see bit.ly/ruby-ssl. To connect
without
using SSL, edit your Gemfile sources and change 'https' to 'http'.


Many thanks!

Murk