Date: Thu, 31 May 2018 19:41:56 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 228621] Certificate validation error in ntpd leap file / ietf.org chain Message-ID: <bug-228621-227-5NBZ8czv9L@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-228621-227@https.bugs.freebsd.org/bugzilla/> References: <bug-228621-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D228621 --- Comment #1 from Jeff Schmidt <jas@jschmidt.org> --- I believe this is a result of no CA root store being installed by default.= =20 Which I'm sure was a hotly debated topic and has been decided upon for noble reasons. However, that decision causes ntpd, which *is* installed by default, to not grab the leap file because ietf.org is https. The easy fix is to change the script to: fetch --no-verify-peer https://www.ietf.org/timezones/data/leap-seconds.list Not the most elegant, but the only option if root certs will not be availab= le for a default package. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-228621-227-5NBZ8czv9L>