User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:126.96.36.199) Gecko/20080201 Firefox/188.8.131.52 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:184.108.40.206) Gecko/20080201 Firefox/220.127.116.11 I have 3 revocation lists that are set to automatic update and the Manage CRL dialog states all three lists are set to update one day before they expire. During the last three months I have had problems on the day the lists are supposed to update. They are not automatically updating. I can manually update each list individually, and everything works OK until the next day they are to update. The lists currently show next update due 2 weeks from the last time I manually updated. The dialog box says that all three lists are set for automatic update and automatic update status is "OK", but they do not update automatically. Reproducible: Always Steps to Reproduce: 1.open Tools, options,Advanced, Encryption, Revocation lists 2.Check date currently showing for lists. if past date for update, list not updated. 3.must manually update lists to make current I came across this problem when I started to have problems with version 18.104.22.168 I started to have problems accessing secure sites. The solution suggested was to turn off oscp option to verify certificates. That is when I checked all the certificates in the current database and found several of the certificates had expired. I also looked at the certificate revocation lists and then found that the lists were not being updated automatically. I have kept them up to date by manually updating the lists each time the browser failed to update.
Assignee: nobody → kengert
Severity: minor → major
Component: Security → Security: PSM
Product: Firefox → Core
QA Contact: firefox → psm
I'm having similar problem. I want to have my CRL updated every 1 day. But Firefox/Thunderbird never do it. I tested and reproduced this problem in: Thunderbird version 22.214.171.124 (20080213) Iceweasel/126.96.36.199 (Debian-188.8.131.52-1) Firefox 3.0 RC1 and RC2 I would realy like to have this feature working. Especialy after so many certificates were revoked after weak random number generator discovery in Debian.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 11 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 371522
You need to log in before you can comment on or make changes to this bug.