Ssh error validating server certificate

So, while the hook lives on the svn server, it is actually the remote server that is updating.

ssh error validating server certificate-34ssh error validating server certificate-15

The author is the creator of nix Craft and a seasoned sysadmin, Dev Ops engineer, and a trainer for the Linux operating system/Unix shell scripting.

CONNECTED(00000003) depth=0 /O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 /O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated verify error:num=27:certificate not trusted verify return:1 depth=0 /O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated verify error:num=21:unable to verify the first certificate verify return:1 --- Certificate chain 0 s:/O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated i:/C=US/ST=Arizona/L=Scottsdale/O=Go Daddy.com, Inc./OU= Daddy Secure Certification Authority/serial Number=07969287 -----BEGIN CERTIFICATE----- MIIE5z CCA8 g Aw IBAg IEAOJk2z ANBgkqhki G9w0BAQUFADCByj ELMAk GA1UEBh MC VVMx EDAOBg NVBAg TB0Fya Xpvbm Ex Ez ARBg NVBAc TCl Njb3R0c2Rhb GUx Gj AYBg NV BAo TEUdv RGFk ZHku Y29t LCBJbm Mu MTMw MQYDVQQLEypod HRw Oi8v Y2Vyd Glma WNh d GVz Lmdv ZGFk ZHku Y29t L3Jlc G9za XRvcnkx MDAu Bg NVBAMTJ0dv IERh ZGR5IFNl Y3Vy ZSBDZXJ0a WZp Y2F0a W9u IEF1d Ghvcml0e TERMA8GA1UEBRMIMDc5Njky ODcw Hhc NMDkw MTE4Mj Ey Mj Mx Whc NMTEw MTE4Mj Ey Mj Mx Wj Bb MRow GAYDVQQKEx Ft YWls Lm5pe GNy YWZ0Lm5ld DEa MBg GA1UEAx MRb WFpb C5ua Xhjcm Fmd C5u ZXQx ITAf Bg NV BAs TGERvb WFpbi BDb250cm9s IFZhb Glk YXRl ZDCBnz ANBgkqhki G9w0BAQEFAAOB j QAwg Yk Cg YEA0Lh CDXv NXh THov9Szh474Cv3Nz7Qsp VOI4p5M z Zt18VTVCHJz0Z Tle Jum8Rblp U4NPHJg Oau Ib1CAE3v LSKy SV2Dj HMt2L2/NUat Ji Kj DQKAElo Kw QK t75BP0m AGFPZm Hl MNUQ32Sr/0byxx M4El L2SSBas JE3PPVk SBOt Lfss CAw EAAa OC Ac Uwgg HBMA8GA1Ud Ew EB/w QFMAMBAQAw HQYDVR0l BBYw FAYIKw YBBQUHAw EGCCs G AQUFBw MCMA4GA1Ud Dw EB/w QEAw IFo DAy Bg NVHR8EKz Ap MCeg Ja Ajhi Fod HRw Oi8v Y3Js Lmdv ZGFk ZHku Y29t L2dkcz Et MS5jcmww Uw YDVR0g BEww Sj BIBgtghkg Bhv1t AQc XATA5MDc GCCs GAQUFBw IBFitod HRw Oi8v Y2Vyd Glma WNhd GVz Lmdv ZGFk ZHku Y29t L3Jlc G9za XRvcnkv MIGABggr Bg EFBQc BAQR0MHIw JAYIKw YBBQUHMAGGGGh0 d HA6Ly9v Y3Nw Lmdv ZGFk ZHku Y29t Lz BKBggr Bg EFBQcw Ao Y a HR0c Dov L2Nlcn Rp Zmlj YXRlcy5nb2Rh ZGR5Lm Nvb S9y ZXBvc2l0b3J5L2dk X2lud GVyb WVka WF0ZS5j cn Qw Hw YDVR0j BBgw Fo AU/axh Mp Ns Rdbi7o Vfmrrndploz Ocw Mw YDVR0RBCww Ko IR b WFpb C5ua Xhjcm Fmd C5u ZXSCFXd3dy5t YWls Lm5pe GNy YWZ0Lm5ld DAd Bg NVHQ4E Fg QUAYML0uo VH8Sn8JZ3xb R9NLz E0t Yw DQYJKo ZIhvc NAQEFBQADgg EBAJ/1/m GM t F/UPw Ovmi NE0i46q XCJDs6Ui7k Cx WWQz C Cb T6x3fe8Vw Z2/9OVe Scw5a Gk G7s U kfid0Xmf Xx Yrqk Vsubrh Qt/1MKKow B35M5a/w Rd7E0h2uc Yh BF3dn TQ29y J9pp HC HOvs UDGOan e7jap My TYn9PU9Y8Qtnzov RXk55i Yf L4p57Yv Pwk4y Mn Btc/kr Qcd m6Zdvm Y zbbj Wa Dyarf Ip3f QCL2HD/l C5r Ja GUn633GIT0Orr Q4Gfy6h Q98UC Pt I8LFuzs02d Jl Cp Dh Gquv Q0W6o4uuvj SP28Hf GBcm Khol G0GT9wy ZZCBv Ul Fy V6kq /KNTis OW4so6I Q= -----END CERTIFICATE----- --- Server certificate subject=/O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated issuer=/C=US/ST=Arizona/L=Scottsdale/O=Go Daddy.com, Inc./OU= Daddy Secure Certification Authority/serial Number=07969287 --- No client certificate CA names sent --- SSL handshake has read 1823 bytes and written 316 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 1024 bit Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : DHE-RSA-AES256-SHA Session-ID: BF3662B2C597A7473E477D0CAD2D5002FCC370661BA5A7364BDCDD9C1247C0F5 Session-ID-ctx: Master-Key: BFF4A2556DB4D7810D63DFF1905A97215185E94A791A2385A20290067F60208F108E54B0BC194E5AEBD130B9CB092B46 Key-Arg : None Start Time: 1243050920 Timeout : 300 (sec) Verify return code: 21 (unable to verify the first certificate) Copy from the “—–BEGIN CERTIFICATE—–” to the “—–END CERTIFICATE—–” , and save it in your ~/.cert/mail.nixcraft.net/ directory as mail.pem.

This certificate was issued by Go Daddy, so you need to get “Certification Authority Root Certificate” (visit your CA’s website to get root certificate): CONNECTED(00000003) depth=3 /L=Vali Cert Validation Network/O=Vali Cert, Inc./OU=Vali Cert Class 2 Policy Validation Authority/CN= [email protected] return:1 depth=2 /C=US/O=The Go Daddy Group, Inc./OU=Go Daddy Class 2 Certification Authority verify return:1 depth=1 /C=US/ST=Arizona/L=Scottsdale/O=Go Daddy.com, Inc./OU= Daddy Secure Certification Authority/serial Number=07969287 verify return:1 depth=0 /O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated verify return:1 --- Certificate chain 0 s:/O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated i:/C=US/ST=Arizona/L=Scottsdale/O=Go Daddy.com, Inc./OU= Daddy Secure Certification Authority/serial Number=07969287 --- Server certificate -----BEGIN CERTIFICATE----- MIIE5z CCA8 g Aw IBAg IEAOJk2z ANBgkqhki G9w0BAQUFADCByj ELMAk GA1UEBh MC VVMx EDAOBg NVBAg TB0Fya Xpvbm Ex Ez ARBg NVBAc TCl Njb3R0c2Rhb GUx Gj AYBg NV BAo TEUdv RGFk ZHku Y29t LCBJbm Mu MTMw MQYDVQQLEypod HRw Oi8v Y2Vyd Glma WNh d GVz Lmdv ZGFk ZHku Y29t L3Jlc G9za XRvcnkx MDAu Bg NVBAMTJ0dv IERh ZGR5IFNl Y3Vy ZSBDZXJ0a WZp Y2F0a W9u IEF1d Ghvcml0e TERMA8GA1UEBRMIMDc5Njky ODcw Hhc NMDkw MTE4Mj Ey Mj Mx Whc NMTEw MTE4Mj Ey Mj Mx Wj Bb MRow GAYDVQQKEx Ft YWls Lm5pe GNy YWZ0Lm5ld DEa MBg GA1UEAx MRb WFpb C5ua Xhjcm Fmd C5u ZXQx ITAf Bg NV BAs TGERvb WFpbi BDb250cm9s IFZhb Glk YXRl ZDCBnz ANBgkqhki G9w0BAQEFAAOB j QAwg Yk Cg YEA0Lh CDXv NXh THov9Szh474Cv3Nz7Qsp VOI4p5M z Zt18VTVCHJz0Z Tle Jum8Rblp U4NPHJg Oau Ib1CAE3v LSKy SV2Dj HMt2L2/NUat Ji Kj DQKAElo Kw QK t75BP0m AGFPZm Hl MNUQ32Sr/0byxx M4El L2SSBas JE3PPVk SBOt Lfss CAw EAAa OC Ac Uwgg HBMA8GA1Ud Ew EB/w QFMAMBAQAw HQYDVR0l BBYw FAYIKw YBBQUHAw EGCCs G AQUFBw MCMA4GA1Ud Dw EB/w QEAw IFo DAy Bg NVHR8EKz Ap MCeg Ja Ajhi Fod HRw Oi8v Y3Js Lmdv ZGFk ZHku Y29t L2dkcz Et MS5jcmww Uw YDVR0g BEww Sj BIBgtghkg Bhv1t AQc XATA5MDc GCCs GAQUFBw IBFitod HRw Oi8v Y2Vyd Glma WNhd GVz Lmdv ZGFk ZHku Y29t L3Jlc G9za XRvcnkv MIGABggr Bg EFBQc BAQR0MHIw JAYIKw YBBQUHMAGGGGh0 d HA6Ly9v Y3Nw Lmdv ZGFk ZHku Y29t Lz BKBggr Bg EFBQcw Ao Y a HR0c Dov L2Nlcn Rp Zmlj YXRlcy5nb2Rh ZGR5Lm Nvb S9y ZXBvc2l0b3J5L2dk X2lud GVyb WVka WF0ZS5j cn Qw Hw YDVR0j BBgw Fo AU/axh Mp Ns Rdbi7o Vfmrrndploz Ocw Mw YDVR0RBCww Ko IR b WFpb C5ua Xhjcm Fmd C5u ZXSCFXd3dy5t YWls Lm5pe GNy YWZ0Lm5ld DAd Bg NVHQ4E Fg QUAYML0uo VH8Sn8JZ3xb R9NLz E0t Yw DQYJKo ZIhvc NAQEFBQADgg EBAJ/1/m GM t F/UPw Ovmi NE0i46q XCJDs6Ui7k Cx WWQz C Cb T6x3fe8Vw Z2/9OVe Scw5a Gk G7s U kfid0Xmf Xx Yrqk Vsubrh Qt/1MKKow B35M5a/w Rd7E0h2uc Yh BF3dn TQ29y J9pp HC HOvs UDGOan e7jap My TYn9PU9Y8Qtnzov RXk55i Yf L4p57Yv Pwk4y Mn Btc/kr Qcd m6Zdvm Y zbbj Wa Dyarf Ip3f QCL2HD/l C5r Ja GUn633GIT0Orr Q4Gfy6h Q98UC Pt I8LFuzs02d Jl Cp Dh Gquv Q0W6o4uuvj SP28Hf GBcm Khol G0GT9wy ZZCBv Ul Fy V6kq /KNTis OW4so6I Q= -----END CERTIFICATE----- subject=/O=mail.nixcraft.net/CN=mail.nixcraft.net/OU=Domain Control Validated issuer=/C=US/ST=Arizona/L=Scottsdale/O=Go Daddy.com, Inc./OU= Daddy Secure Certification Authority/serial Number=07969287 --- No client certificate CA names sent --- SSL handshake has read 1823 bytes and written 316 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 1024 bit Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : DHE-RSA-AES256-SHA Session-ID: 37E5AF0EE1745AB2DACAEE0FB7824C178A58C6AEF7A0EF93609643F16A20EE51 Session-ID-ctx: Master-Key: 7B9F8A79D3CC3A41CA572ED266076A1531E12EE8D07D859D65F24368ABA0D2CAE670AA0652433D9E0585E566D9C16FCF Key-Arg : None Start Time: 1243051912 Timeout : 300 (sec) There should be lots of data, however the important thing to note down is that the final line “Verify return code: 0 (ok)”.

This menu entry lets you specify a space delimited list of filename extensions that should be viewable in the browser (ie., txt for plain-text files).

This menu entry can be used to force the repository's data to be refreshed in the code browser when there is a problem. This menu entry lets you configure specific permissions.

Leave a Reply

Your email address will not be published. Required fields are marked *

One thought on “ssh error validating server certificate”