253063 - error -8101 (certificate corrupted) occurs if I open web-site with mozilla browser & mail using ssl

Status: RESOLVED DUPLICATE of bug 231775

(NSS :: Libraries, defect)

Description

[Hannelore Kohl]

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7) Gecko/20040616
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7) Gecko/20040616

If I want to visit https://mail.epost.de/ using mozilla 1.7en following error
occurs:
"Could not establish an encrypted connection because certificate presented by
mail.epost.de is invalid or corrupted. Error Code: -8101"

If I use Internet Explorer everything works fine..

btw the certificate was changed 5 days ago - before that everthing was fine..
same behavior occurs using mozilla-mail..

sometimes - but very very seldom - i can work around this problem by clicking
hundreds of times on "get new messages" in mail&newsgroups..

Reproducible: Always
Steps to Reproduce:
1. visit https://mail.epost.de/ or connect using secure-pop3 or secure-smtp
Actual Results:  
error -8101 occurs almost evertime

Expected Results:  
show the web-site correctly - as it did before (and as IE6 does)..

others got the same bug (also with different web-sites)..
http://forums.mozillazine.org/viewtopic.php?t=99200&highlight=8101&sid=5bc6d5c0a3d52667069323c4ee75955b
http://forums.mozillazine.org/viewtopic.php?t=104401&highlight=8101&sid=5bc6d5c0a3d52667069323c4ee75955b

Comment 1

[Christian :Biesinger (don't email me, ping me on IRC)]

-8101 seems to be:
138 SEC_ERROR_INADEQUATE_CERT_TYPE              =   (SEC_ERROR_BASE + 91),

324 "Certificate type not approved for application.")

Comment 2

[Nelson Bolyard (seldom reads bugmail)]

Changing bug product to NSS.   NOT confirmed.
Whether this is a bug, or the certs really are invalid 
remains to be determined. 

Comment 3

[Nelson Bolyard (seldom reads bugmail)]

*** This bug has been marked as a duplicate of 231775 ***