mooomooo
commented
2 years ago This is very clearly a horrendous hack, but nuking the offending certificate from the official store (as suggested by https://www.openssl.org/blog/blog/2021/09/13/LetsEncryptRootCertExpire/) does the trick. I added the line:
RUN sed -e '/DST Root CA X3/,+19d' -i.backup /usr/share/purple/ca-certs/mozilla.pemto the end of the Dockerfile which seems to work for now.
ezkrg
Letsencrypt did something to their certificates earlier this year, and now bitlbee refuses to connect to letsencrypt signed servers (e.g. self-hosted rocketchat) -- the appropriate CA would need to be updated somehow.