[webmin-l] Just a quick heads up...

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Just a heads up.
Looks like the full chain isnt in https://download.webmin.com/

>From Qualys:
1
Sent by server 
download.webmin.com 
Fingerprint SHA256:
b0cb5e8862cb4a3c69c9554567526a034e789295dce0ace02b7e83d9c315d56b
Pin SHA256: LF+viNntupChFQJF+AI05v1WeZ8DVhno5nlKJzwUONw= 
RSA 2048 bits (e 65537) / SHA256withRSA 
2
Extra download 
R3 
Fingerprint SHA256:
730c1bdcd85f57ce5dc0bba733e5f1ba5a925b2a771d640a26f7a454224dad3b
Pin SHA256: jQJTbIh0grw0/1TkHSumWb+Fs0Ggogr621gT3PvPKG0= 
RSA 2048 bits (e 65537) / SHA256withRSA 
3
In trust store 
DST Root CA X3   Self-signed 
Fingerprint SHA256:
0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739
Pin SHA256: Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys= 
RSA 2048 bits (e 65537) / SHA1withRSA 
Weak or insecure signature, but no impact on root certificate

This is causing an error on Ubuntu 20.04 Focal apt updates.

Sincerely,

Eric Tykwinski
TrueNet, Inc.
P: 610-429-8300

[webmin-l] Just a quick heads up...

A web-based interface for system administration of UNIX

[webmin-l] Just a quick heads up...