That warning should not appear again until Augunless someone is actually presenting a fake certificate. ![]() file Equifax_Secure_Certificate_Authority.pem -keystore cacertsįinally, restart Android Studio. ![]() Next you'll need to add it to the keystore: keytool -import -alias equifaxca \ You'll also see that the root certificate is named Equifax Secure Certificate Authority. At this point you can verify that the hashes in the warning match the hashes for the real G2 certificate. You can view the chain in Chrome by going to, clicking on the green lock, then "Certificate Information" in the connection tab. The Google Internet Authority G2 certificate is the same one that is used to sign the certificates for google's sites. Unfortunately the warning doesn't list the whole chain so it takes a little work to find it. ![]() Next you'll want to find the root certificate in the chain the server is presenting. ![]() For example, mine is at ~/Library/Caches/AndroidStudio/tasks/cacerts. The location and default password of the keystore should be listed at the bottom of that warning. You should instead add root certificates you trust to the Android Studio keystore. This probably isn't happening but it's always better to do things correctly when it comes to security. Someone could be attempting a man-in-the-middle attack with a fake certificate in order to install malicious software on your computer through the update process.
0 Comments
Leave a Reply. |