Closed Bug 925952 Opened 11 years ago Closed 11 years ago

mozilla-hispano.org ssl cert expired

Categories

(Infrastructure & Operations :: SSL Certificates, task)

task
Not set
normal

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: Nukeador, Assigned: bburton)

References

Details

Attachments

(2 files)

Hi,

I've just discovered that the ssl cert for mozilla-hispano.org has expired.

I thought we were going to be pinged by IT when the date was close :S

Please can you renew it ASAP and also include:

intranet.mozilla-hispano.org

In the list of sub-domains we already have for the cert?

Right now all our pages are giving ssl error and we have some critical ones such as support forums and events registrations.

Thanks!
Assignee: server-ops-webops → bburton
Severity: blocker → normal
This was originally purchased in bug 689119.
In addition to 'www' and 'eventos', community would like also 'intranet' subdomain to be covered by the certificate.
Thanks!
Subject: C=ES, ST=Madrid, O=Mozilla Hispano, CN=www.mozilla-hispano.org/emailAddress=tecnico@mozilla-hispano.org

X509v3 Subject Alternative Name: 
DNS:mozilla-hispano.org, DNS:www.mozilla-hispano.org, DNS:eventos.mozilla-hispano.org, DNS: intranet.mozilla-hispano.org
In trying to get a speedy cert, I may have made things more complicated.  My apologies. =\

I've a cert request to Digicert for an SSL request that is currently on hold, waiting for Digicert to do domain validation.

There is a *second* cert request that I made with Geotrust (which issued the cert in bug 689119).  The email from them reads "Order processing typically takes two business days to process your order, if no additional documentation is required." so I am not sure when the cert will arrive. =(  Looking back, I may have ordered the wrong type of cert (I ended up with a True Business ID cert rather than an Enterprise one).

I don't know if there is someone that can call one of our contacts at either Digicert or Geotrust to try to expedite things.  I also don't know how horrific it would be to use a self-signed cert until we get a properly signed one, since it sounds like nothing is being served up right now.
(In reply to C. Liang [:cyliang] from comment #3)
> 
> I also don't know how
> horrific it would be to use a self-signed cert until we get a properly
> signed one, since it sounds like nothing is being served up right now.

I think both options (self-signed or expired) have the same bad UX, so I would prefer to keep things as they are right now and wait for the correct certificate.

It will be awesome if you can speedy this things.

Thanks!
We were able to approve this through Digicert for one year (we're between POs getting processed so it wouldn't let us get the funds for two years) and I'm attaching the intermediate and final certs to this bug
Attached file AllCerts.zip
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Deployed.

Thanks for your quick response!
See Also: → 926064
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: