|
Home > Archive > IIS Server Security > May 2004 > Re: Verisign SSL Certificate Issue- Resolved, I think.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Re: Verisign SSL Certificate Issue- Resolved, I think.
|
|
|
| All,
The issue was not really related to verisign's certificate. It was the SSL
vulnerability. I had to apply SP4 and the Post SP4 fix for the SSL
vulnerability. I called Verisign and their response was, if the certificate
works some of the time, then call someone else. I would have expected themto
atleast ask me if thePost SP4 fix was in place. I guess there could be too
many factors and expecting them to be any more than certificate sellers is
not fair to them.
Thanks
Krams
"Krams" <kramz@hotmail.com> wrote in message
news:O$WbqtEPEHA.2716@tk2msftngp13.phx.gbl...
> All,
>
> I recently updated the certificate on my web server with a new certificate
> from verisign as my old one for the site had expired. When I set out to do
> this, I also noticed the issue with the versign certificate having
expired.
> I replaced both. Then rebooted the server. It worked fine - I was able to
> get to the pages that I had marked to be under SSL fine. Over the weekend
,
> someting must have happened, because I was not able to access the SSL only
> pages via https. Then I rebooted the server that night ( Monday ) and the
> problem went away - I was once again able to access the SSL only pages via
> https. A week went by and this happened again. Rebooting the server seemed
> to fix the problem once again.
>
> I have the following in the certificate stores:
>
> Trusted Root:
> Verign Class 3 Public Primary CA..Expires on 8/1/2028
>
> Intermedite Certificates:
> The new verisign certificate www.verisign.com/CPS.by.ref.Incorp.
> LIABILITY LTD.(c)97 verisign. Expires on 10/24/2011
> Grand Parent Certificate is Verign Class 3 Public Primary CA.
>
> Personal:
> The new certificate I obtained for my web site. Expires on
> 10/03/2005,
> Parent certificate is www.verisign.com/CPS.by.ref.Incorp.
LIABILITY
> LTD.(c)97 verisign
> Grand Parent Certificate is Verign Class 3 Public Primary CA.
>
>
> Can anyone help please.
>
>
> Thanks
> Krams
>
>
| |
| Bernard 2004-05-25, 7:33 am |
| Are you referring ms04-011 ? this was out in april.
--
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/
"Krams" <kramz@hotmail.com> wrote in message
news:O#Ec5qUQEHA.2248@TK2MSFTNGP12.phx.gbl...
> All,
>
> The issue was not really related to verisign's certificate. It was the SSL
> vulnerability. I had to apply SP4 and the Post SP4 fix for the SSL
> vulnerability. I called Verisign and their response was, if the
certificate
> works some of the time, then call someone else. I would have expected
themto
> atleast ask me if thePost SP4 fix was in place. I guess there could be too
> many factors and expecting them to be any more than certificate sellers is
> not fair to them.
>
> Thanks
> Krams
>
> "Krams" <kramz@hotmail.com> wrote in message
> news:O$WbqtEPEHA.2716@tk2msftngp13.phx.gbl...
certificate[vbcol=seagreen]
do[vbcol=seagreen]
> expired.
to[vbcol=seagreen]
weekend[vbcol=seagreen]
> ,
only[vbcol=seagreen]
the[vbcol=seagreen]
via[vbcol=seagreen]
seemed[vbcol=seagreen]
> LIABILITY
>
>
|
|
|
|
|