Notepad++ v8.8.3 Release: self-signed certificate
-
Looks like none of the crt files will download correctly now; they were working a while ago. It does not download as a valid cert.
-
@PGomersall said in Notepad++ v8.8.3 Release: self-signed certificate:
Looks like none of the crt files will download correctly now; they were working a while ago. It does not download as a valid cert.
Might be something on your end. I just tried all three, and they did what I expected
- Primary Location: https://notepad-plus-plus.org/nppRoot.crt => downloaded file
- Secondary Location: https://github.com/notepad-plus-plus/notepad-plus-plus/blob/master/nppRoot.crt => takes you to the GitHub wrapper, where you can download the raw file
- Tertiary Location: https://npp-user-manual.org/docs/certs/nppRoot.crt => downloaded file
-
@PeterJones said in Notepad++ v8.8.3 Release: self-signed certificate:
Might be something on your end. I just tried all three, and they did what I expected
Tried multiple systems all using MS Edge browser though but also via PowerShell with Invoke-WebRequest, all are returning a plain txt.
Approximately 1 hour ago it did download correctly.
Just tried 4 computer and Chrome and FDM - same result
-
@PGomersall said in Notepad++ v8.8.3 Release: self-signed certificate:
Tried multiple systems all using MS Edge browser though but also via PowerShell with Invoke-WebRequest, all are returning a plain txt.
My post from 20 minutes ago was after I verified in Chrome. And I just now tried PowerShell
PS C:\Users\pryrt> cd Downloads PS C:\Users\pryrt\Downloads> Invoke-WebRequest https://notepad-plus-plus.org/nppRoot.crt StatusCode : 200 StatusDescription : OK Content : {45, 45, 45, 45...} RawContent : HTTP/1.1 200 OK Connection: keep-alive platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: a5305815b661c200e85fa1... Headers : {[Connection, keep-alive], [platform, hostinger], [panel, hpanel], [content-security-policy, upgrade-insecure-requests]...} RawContentLength : 6380 PS C:\Users\pryrt\Downloads> Invoke-WebRequest https://npp-user-manual.org/docs/certs/nppRoot.crt StatusCode : 200 StatusDescription : OK Content : {45, 45, 45, 45...} RawContent : HTTP/1.1 200 OK Connection: Keep-Alive Keep-Alive: timeout=5, max=100 platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests alt-svc: h3=":443"; ma=2592000, h3-29="... Headers : {[Connection, Keep-Alive], [Keep-Alive, timeout=5, max=100], [platform, hostinger], [panel, hpanel]...} RawContentLength : 6380
It’s still working for me.
Approximately 1 hour ago it did download correctly.
And it’s still downloading correctly now, for me.
Out of curiousity, I ssh’d into a remote linux machine (which would use a different route/path between that machine and the upstream servers) – and both of those had errors. So there might be a routing issue between some providers and the various notepad++ servers.
yeah, I tried a
tracert notepad-plus-plus.org
from my PC , and it was able to find a route; but when I didtracert notepad-plus-plus.org
from the remote machine, which has a different route to Notepad++, it wasn’t able to find a route.So there might be a network issue somewhere between the Notepad++ servers (both are on the same hosting system, I think) and some other networks, but not all (since I still have access from my home internet connection)
-
@PeterJones
I just got https://notepad-plus-plus.org/nppRoot.crt to download correctly, but not the other 2 locations. Really need this to be bomb proof. -
@PGomersall said in Notepad++ v8.8.3 Release: self-signed certificate:
Really need this to be bomb proof.
The second site is GitHub. And as I said in my earlier message with the URLs, the GitHub URL doesn’t return the raw cert, it returns the GitHub wrapper around the cert; you have to use the GitHub interface to download the raw. If you want a direct URL to the raw file, it’s at https://raw.githubusercontent.com/notepad-plus-plus/notepad-plus-plus/refs/heads/master/nppRoot.crt … but note that GitHub will give it text/plain headers (because inside, a .cer is often a BASE64-encoded file starting with
-----BEGIN CERTIFICATE-----
and ending with-----END CERTIFICATE-----
…So, for that matter, the certificates downloaded from the other URLs will be “plain text” as well. The question is what are the contents of that plain text. And you haven’t given any hint as to that.
Checking the contents you are receiving is really the next step. The hosting service that Don uses for Notepad++ websites often uses the “are you a human” checks to prevent DDOS attacks – so you might actually be getting a “403 Forbidden” error, especially when using the command-line based interfaces instead of a browser. So the contents might be either an error message, or an HTML version of an error message.
So if there are network/route errors, Don cannot do anything to fix that. If you are being “forbidden” because you haven’t done the “are you a human check”, there’s nothing Don can do to fix that. And if you are going to the non-raw github URL, it will of course be the github-wrapped version.
-
Sorry if I wasn’t fast enough for the Release Notes…
Better late than never (Not sure it exists in English, but the French sentence is “Mieux vaut tard que jamais”).
Updated. Please check:
https://notepad-plus-plus.org/downloads/v8.8.3/
https://notepad-plus-plus.org/news/v883-self-signed-certificate/
https://notepad-plus-plus.org/resources/
and
https://github.com/notepad-plus-plus/notepad-plus-plus/tree/master -
Good Morning
I downloaded the latest version of N++ and I installed the certificate npproot.crt.
When I try to execute npp.8.8.3.Installer.exe it appears the following screenWith npp.8.8.2.Installer.exe it’s ok.
Any suggestion?
-
@Jordi-Sole said in Notepad++ v8.8.3 Release: self-signed certificate:
Any suggestion?
Just wait for a while, the AVs need some time to handle (update its info) the new Notepad++ self-signed certificate.
I just tried the VirusTotal and ok (much much better from what we saw at the unsigned v8.8.2 release time - only 1 AV from 72 flagged the npp.8.8.3.Installer.x64.exe as malware):
https://www.virustotal.com/gui/file/7094a07167648628e47249a16d9d6db922e5aa1255ac4322a2e4900d233372dd
-
For me it seems, that the information for the root certificate in the user manual got somehow mixed up a little bit.
Thumbprint value is taken of the current root certificate, whereas value of the serial number is of the previous certificate. -
@sevem47 said in Notepad++ v8.8.3 Release: self-signed certificate:
Thumbprint value is taken of the current root certificate, whereas value of the serial number is of the previous certificate.
Both values match what was published in this post and this page
-
@PeterJones
This I have seen, but unfortunately this does not match with the current root certificate that can be downloaded: -
I also see for the current nppRoot.crt:
Serial number: 63a633d265f1ffed66c5c67cbd9b7189
Thumbprint: c80539ff7076d22e73a01f164108dafbf06e45e4 -
@sevem47 said in Notepad++ v8.8.3 Release: self-signed certificate:
@PeterJones
This I have seen, but unfortunately this does not match with the current root certificate that can be downloaded:It should be 63a633d265f1ffed66c5c67cbd9b7189
Fixed in https://notepad-plus-plus.org/resources/ -
fixed usermanual