Well, if you want to connect to the APRS-IS backbone using SSL (and only if using SSL), you need the LotW certificate and key (because the ARRL's Certificate Authority is currently the only recognized CA for APRS-IS-over-SSL, to ensure the certificate holder is also an amateur radio licensee). But you can still connect using the old passcode interface (which does not require an SSL certificate, just the completely compromised passcode).
All I did regarding APRS-IS in this build was to fix the SSL interface to recognize newer server-side certificates and allow use of encrypted connections if someone upgraded the SSL/TLS library on the APRS-IS Tier 2 gateway and didn't remember to re-enable the NULL (non-encrypting) cipher (since non-encrypted connections by definition would be considered insecure by the IT industry, and so this cipher is disabled by default). Plus I allowed people to look at their certificate and see if it was expired, and better reported the error for expired server-side certificates (i.e., non-updated Tier 2 servers).
Andrew, KA2DDO
author of YAAC
________________________________________
From:
[email protected] <
[email protected]> on behalf of Dave_G0WBX via Groups.Io <g8kbvdave@...>
Sent: Friday, March 27, 2020 1:46 PM
To:
[email protected]Subject: Re: [yaac-users] next beta build#148 of YAAC, created 2020-Mar-26
Hi Andrew.
Re:-
After a long wait, the next build is out. The SSL interface to APRS-IS
should be working again, as long as your Logbook Of The World
certificate is current (if not, get it renewed).
And for those of us who do not use LoTW, nor want to?
73.
Dave G8KBV.
--
Created on and sent from a Unix like PC running and using free and open source software:
