Closed Bug 132344 Opened 23 years ago Closed 23 years ago

ocsp validation errors

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Windows 2000
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED DUPLICATE of bug 130885

People

(Reporter: Bill.Burns, Assigned: ssaux)

Details

Turning on OCSP validation checking appears to cause problems with well-known websites. steps to reproduce: - go to "edit->preferences->privacy&security->validation" - choose the 2nd option "Use OCSP to validate only certificates that specify an OCSP service URL" - close the prefs window go to the following websites (I've encountered errors on these): 1) http://www.united.com/easyupdate. Click on the "login" button in the middle of the page. You should get an error "Error trying to validate certificate from www.ua2go.com using OCSP - response contains a date which is in the future. {My hunch is that a GMT/timezone calculation is getting screwed up.} 2) Go to http://us.etrade.com You should get the error "Error trying to validate certificate from us.etrade.com using OCSP - corrupted or unknown response. Error Code: -8073" You are then unable to connect to the website.
*** This bug has been marked as a duplicate of 130885 ***
Status: UNCONFIRMED → RESOLVED
Closed: 23 years ago
Resolution: --- → DUPLICATE
Verified dupe.
Status: RESOLVED → VERIFIED
Product: PSM → Core
Version: psm2.0 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.