(In reply to Moritz Duge from comment #11) > (In reply to Wolfgang Rosenauer from comment #10) > You're getting this error? currently I get this one: SSL_ERROR_HANDSHAKE_FAILURE_ALERT (cleartext translation something like security parameters cannot be aligned) > That actually seems to be an misconfiguration by CaCert or maybe it's a > misunderstanding by Firefox, because the CaCert root CA isn't in Firefox by > default and uses MD5 (for a root CA itself it's still OK to use MD5, but > Firefox just doesn't know, that CaCert is a root CA). > Just click ADD_EXCEPTION and disable PERMANENTLY_STORE_THIS_EXCEPTION for > the moment. I have the CACERT Root CA in my browser since forever and just confirmed that. > The only idea I'm currently having: > Maybe Firefox-57 (or one of the just listed packages) needs to be build > against libz1 >= 1.2.9 (TW has libz1-1.2.11)!? > Because on 42.3 I needed to update libz1 from 1.2.8 to >= 1.2.9 to make > Firefox-57 work. hmm, I have wolfi@Hygiea:~> rpm -q libz1 libz1-1.2.8-13.15.x86_64 on my 42.3 system. I'm running out of ideas :-(