January 16, 2005

brand new certificates

Various SSL certificates have been changed because the old ones expired. You may have noticed if you use the IMAP/SSL, SMTP/SSL or webmail services.

You can either accept the new certificate every time (or permanently, if your system permits it), or you can obtain the new root certificate. This is the recommended option, since any future changes to the certificates used at antiflux.org will be transparent to you.

To obtain the new root certificate, go to http://www.antiflux.org/ca and download either of the files there. They're identical, but they have different extensions for different systems.

Once you have obtained the certificate, you will need to install it:

In Firefox or Thunderbird, go to Preferences -> Advanced -> Certificates -> Manage Certificates -> Authorities and Import the certificate contained in the file you just download. Note that Firefox and Thunderbird appear to manage their certificates independently of the underlying operating system, so you may have to install the certificate for both Firefox/Thunderbird and the OS.

For Mac OS X, download the PEM file to your desktop and double-click on it. This should start Keychain Access. You will be prompted to add the certificate to a keychain. Select X509Anchors and proceed.

For Windows, Internet Explorer should prompt you to install the certificate when you download it.

Questions? E-mail evan@antiflux.org

Posted by evan at January 16, 2005 12:38 PM
Comments

root@antiflux.org