Fossil: View Ticket

Ticket UUID:	acc4d41ed861c4419a4312bb00dfbb5afe5e12bf
Title:	RSS feed over https is 'invalid'
Status:	Closed	Type:	Code_Defect
Severity:	Important	Priority:
Subsystem:		Resolution:	Not_A_Bug
Last Modified:	2011-08-26 15:08:57
Version Found In:	303dd442fe
Description & Comments:
Attempting to add an RSS feed to my fossil repo which is under SSL (with a self-signed cert) fails in Thunderbird with "invalid feed". I don't know what that means, exactly; my other fossil repos which are not under SSL work fine. dmitry added on 2011-08-25 12:36:36 UTC: I cannot reproduce exactly this, but Thunderbird shows me an error "feed uses invalid security certificate" for self-signed certs: http://i.imgur.com/FIEQ8.png. Such certificates should be used with caution, and rejecting self-signed feeds by default is a good thing to do for average users. If I add the feed https://www.fossil-scm.org/index.html/timeline.rss into OS X Mail, it does the same: "The certificate for this server is invalid. You might be connecting to a server that is pretending to be “www.fossil-scm.org” which could put your confidential information at risk.". However, feeds delivered via HTTPS with CA-signed certificates work well (example: https://codingrobots.org/qlfossil/timeline.rss). I suggest you to get a CA-signed certificate (http://www.startssl.com gives them for free -- I use their certificate on my website without problems), or find a way to enable self-signed certs in Thunderbird. lrem added on 2011-08-26 15:08:57 UTC: As explained by dmitry, this is not a Fossil bug. But as described in [109ae2e904], the RSS feed can in fact be invalid.