http://bugzilla.suse.com/show_bug.cgi?id=1071298 http://bugzilla.suse.com/show_bug.cgi?id=1071298#c12 --- Comment #12 from Wolfgang Rosenauer <wolfgang@rosenauer.org> --- (In reply to Moritz Duge from comment #11)
(In reply to Wolfgang Rosenauer from comment #10) You're getting this error?
currently I get this one: SSL_ERROR_HANDSHAKE_FAILURE_ALERT (cleartext translation something like security parameters cannot be aligned)
That actually seems to be an misconfiguration by CaCert or maybe it's a misunderstanding by Firefox, because the CaCert root CA isn't in Firefox by default and uses MD5 (for a root CA itself it's still OK to use MD5, but Firefox just doesn't know, that CaCert is a root CA). Just click ADD_EXCEPTION and disable PERMANENTLY_STORE_THIS_EXCEPTION for the moment.
I have the CACERT Root CA in my browser since forever and just confirmed that.
The only idea I'm currently having: Maybe Firefox-57 (or one of the just listed packages) needs to be build against libz1 >= 1.2.9 (TW has libz1-1.2.11)!? Because on 42.3 I needed to update libz1 from 1.2.8 to >= 1.2.9 to make Firefox-57 work.
hmm, I have wolfi@Hygiea:~> rpm -q libz1 libz1-1.2.8-13.15.x86_64 on my 42.3 system. I'm running out of ideas :-( -- You are receiving this mail because: You are on the CC list for the bug.