tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <wbar...@wilshire.com>
Subject Re: Can APR use verisign certs ?
Date Wed, 10 Jan 2007 02:59:25 GMT

"robert lazarski" <robertlazarski@gmail.com> wrote in message 
news:f87675ee0701091249n71416969y40e5076b450f5cb7@mail.gmail.com...
> On 1/9/07, Peter Crowther <Peter.Crowther@melandra.com> wrote:
>> > From: robert lazarski [mailto:robertlazarski@gmail.com]
>> > http://alpha-web01.alphatheory.com/atdev/
>>
>> The cert's issued to dpt.alphatheory.com; you're testing connections to
>> alpha-web01.alphatheory.com.  Any sensible browser will scream at that
>> difference.  If they didn't, crackers would be able to get a cert for
>> www.somesillyname.com, install it on a spare server, poison the DNS for
>> www.amazon.com and the browsers wouldn't scream as they were redirected.
>>
>> You will get errors from every browser with that cert unless/until they
>> connect to https://dpt.alphatheory.com.
>>
>>                 - Peter
>>
>
> Can I please ask for more assitence ? I'm getting a date error on this
> site in both IE6 and firefox 1.5 - 2.0 that I don't understand:
>
> https://dpt.alphatheory.com/
>

You have the expired intermediate cert for Verisign.  As a result, the 
browser can't verify you because it thinks that the cert that signed yours 
has expired.  You need to get the new one from Verisign and import that one 
instead.

> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
> 




---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message