[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Error validating server certificate

From: Robert Denton <robert_at_headsprout.com>
Date: Fri, 23 May 2008 16:02:06 -0700

Hi folks,

I have been attempting to set up the very excellent CPAN module SVN::Notify::Mirror, and things have been going very well. The goal is to use SVN::Notify in a hook script to mirror a portion of our repo on a windows development server. What the module does is to logon to the remote server via ssh and issue an update. So, while the hook lives on the svn server, it is actually the remote server that is updating.

Unfortunately, in testing, when I run the hook script manually it seems to work up until the actual updating needs done, and then I get this:

[root_at_svn hooks]# ./post-commit /svnserver/repos/testing/ 1008
Error validating server certificate for 'https://svnserver.domain.com:443':
 - The certificate is not issued by a trusted authority. Use the
   fingerprint to validate the certificate manually!
Certificate information:
 - Hostname: *.domain.com
 - Valid: from Fri, 16 Sep 2005 08:00:00 GMT until Tue, 16 Sep 2008 07:59:59 GMT
 - Issuer: (c)2002 Comodo Limited, Terms and Conditions of use: http://www.comodo.net/repository, Comodo Trust Network, Comodo Limited, GB
 - Fingerprint: (finger print was here)
(R)eject, accept (t)emporarily or accept (p)ermanently? p
Killed by signal 2.

selecting p (for permanent acceptance) doesn't seem to do anything, and I am wondering if that is because the entity actually having a problem with the certificate is the remote server. Oddly, logging onto the remote server, I can pull up the repo in a browser with not certificate complaints whatsoever.

What can I do so that the remote server does not complain about the certificate? I should not that the certs as well as the intermediate cert are correctly configured in the apache server on the linux based svn repository server. Any ideas?

Received on 2008-05-24 01:02:38 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.