Closed Bug 132344 Opened 22 years ago Closed 22 years ago

ocsp validation errors

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Windows 2000
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED DUPLICATE of bug 130885

People

(Reporter: Bill.Burns, Assigned: ssaux)

Details

Turning on OCSP validation checking appears to cause problems with well-known
websites.

steps to reproduce:
- go to "edit->preferences->privacy&security->validation"
- choose the 2nd option "Use OCSP to validate only certificates that specify an
OCSP service URL"
- close the prefs window

go to the following websites (I've encountered errors on these):
1) http://www.united.com/easyupdate.  Click on the "login" button in the middle
of the page.

You should get an error "Error trying to validate certificate from www.ua2go.com
using OCSP - response contains a date which is in the future.
{My hunch is that a GMT/timezone calculation is getting screwed up.}

2) Go to http://us.etrade.com
You should get the error "Error trying to validate certificate from
us.etrade.com using OCSP - corrupted or unknown response.  Error Code: -8073"
You are then unable to connect to the website.

*** This bug has been marked as a duplicate of 130885 ***
Status: UNCONFIRMED → RESOLVED
Closed: 22 years ago
Resolution: --- → DUPLICATE
Verified dupe.
Status: RESOLVED → VERIFIED
Product: PSM → Core
Version: psm2.0 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.