Closed Bug 994032 Opened 11 years ago Closed 11 years ago

New certificates for *.up.mozillalabs.com please

Categories

(Infrastructure & Operations :: SSL Certificates, task)

task
Not set
normal

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: oyiptong, Assigned: cliang)

Details

Due to the recent heartbleed openssl bug, the certificates may have been compromised. Could you please provide a new certificate?
Assignee: server-ops-webops → cliang
New certificate: -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIQBS0gcThytIAYc9Z3fWamzjANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTQwMjEzMDAwMDAwWhcN MTUwMjE4MTIwMDAwWjBuMQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExFjAUBgNV BAcTDU1vdW50YWluIFZpZXcxGzAZBgNVBAoTEk1vemlsbGEgRm91bmRhdGlvbjEd MBsGA1UEAwwUKi51cC5tb3ppbGxhbGFicy5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFUlvPMWwHMeYu3GeoTYak2bQemKzwev4fnCsQ0Re9+KdL Q56yGKGLqWJelTfxf/uLoB9esvhBE1v7C7V1Rylz+k0UKGzomSANM+lxbi91FjzW DEV7bqbzshdmUxuzdetEoa8I8EavY04YiWWEjkzS3hl0biQvQlGaUCwah4HCF2OH YEfOZoLvmMwOVaMHDj/sgISF7oWNCdKts8/E16ct3kOd/SJJ3C1ActLl2an78Y8R j5h27esli0qa3+OrhvjkvTfMErhpwikulYImGdNZrXXoSaQ6vMfdzpW8hITcZ8bi VzEvp1fd23HhqI6HzP7KZaaadvNtnip/TptyDOftAgMBAAGjggHlMIIB4TAfBgNV HSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUtxHnERuBfMJt v9PRqJSWPuSw6H8wMwYDVR0RBCwwKoIUKi51cC5tb3ppbGxhbGFicy5jb22CEnVw Lm1vemlsbGFsYWJzLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRp Z2ljZXJ0LmNvbS9zc2NhLXNoYTItZzEuY3JsMC+gLaArhilodHRwOi8vY3JsNC5k aWdpY2VydC5jb20vc3NjYS1zaGEyLWcxLmNybDBCBgNVHSAEOzA5MDcGCWCGSAGG /WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BT MHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNl cnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v RGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwDQYJ KoZIhvcNAQELBQADggEBAJw/17ODUdE6u2K1+KqZrzowOId/prXg40YDz1v20aIr V/0/ueHUjfrqxEC/oMTNKFGA4MnLxwFU22b9QKZFtNeLicGxXx9UYJkwodytrCAJ d2IhiFpYDYfa7cceXFeqC6WJb68IfWkbQj8AKg9r1cY8DIvCdty+MkeXontRje0n mj4+ie2iY8MbSq/Qnq3lO/lpFpmERasM1BbpxrMyduSbdHfSwo/aazDg98AciVzy Ct+ovtrGjFcFHgmTEk5gY0S60VzG0605OawuJKaqsoGwPTLsebmswYv1nRhsUrzd dwFNPZ/jEAqy/pk3xKyiloe4BgGf+6rp4kXiPdJHp6g= -----END CERTIFICATE-----
Intermediate certificate: -----BEGIN CERTIFICATE----- MIIElDCCA3ygAwIBAgIQAf2j627KdciIQ4tyS8+8kTANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD QTAeFw0xMzAzMDgxMjAwMDBaFw0yMzAzMDgxMjAwMDBaME0xCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxJzAlBgNVBAMTHkRpZ2lDZXJ0IFNIQTIg U2VjdXJlIFNlcnZlciBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANyuWJBNwcQwFZA1W248ghX1LFy949v/cUP6ZCWA1O4Yok3wZtAKc24RmDYXZK83 nf36QYSvx6+M/hpzTc8zl5CilodTgyu5pnVILR1WN3vaMTIa16yrBvSqXUu3R0bd KpPDkC55gIDvEwRqFDu1m5K+wgdlTvza/P96rtxcflUxDOg5B6TXvi/TC2rSsd9f /ld0Uzs1gN2ujkSYs58O09rg1/RrKatEp0tYhG2SS4HD2nOLEpdIkARFdRrdNzGX kujNVA075ME/OV4uuPNcfhCOhkEAjUVmR7ChZc6gqikJTvOX6+guqw9ypzAO+sf0 /RR3w6RbKFfCs/mC/bdFWJsCAwEAAaOCAVowggFWMBIGA1UdEwEB/wQIMAYBAf8C AQAwDgYDVR0PAQH/BAQDAgGGMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMHsGA1UdHwR0MHIwN6A1oDOGMWh0dHA6 Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RDQS5jcmwwN6A1 oDOGMWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RD QS5jcmwwPQYDVR0gBDYwNDAyBgRVHSAAMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwHQYDVR0OBBYEFA+AYRyCMWHVLyjnjUY4tCzh xtniMB8GA1UdIwQYMBaAFAPeUDVW0Uy7ZvCj4hsbw5eyPdFVMA0GCSqGSIb3DQEB CwUAA4IBAQAjPt9L0jFCpbZ+QlwaRMxp0Wi0XUvgBCFsS+JtzLHgl4+mUwnNqipl 5TlPHoOlblyYoiQm5vuh7ZPHLgLGTUq/sELfeNqzqPlt/yGFUzZgTHbO7Djc1lGA 8MXW5dRNJ2Srm8c+cftIl7gzbckTB+6WohsYFfZcTEDts8Ls/3HB40f/1LkAtDdC 2iDJ6m6K7hQGrn2iWZiIqBtvLfTyyRRfJs8sjX7tN8Cp1Tm5gr8ZDOo0rwAhaPit c+LJMto4JQtV05od8GiG7S5BNO98pVAdvzr508EIDObtHopYJeS4d60tbvVS3bR0 j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz -----END CERTIFICATE-----
New key sent under separate cover. As a check, to make sure you have the correct certificate, you can check the serial numbers: [root@ssl1.private.phx1 root-ca]# openssl x509 -in orig/wildcard.up.mozillalabs.com.crt -noout -serial serial=0B26923659531F497DB53C661847B425 [root@ssl1.private.phx1 root-ca]# openssl x509 -in wildcard.up.mozillalabs.com.crt -noout -serial serial=052D20713872B4801873D6777D66A6CE
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Thank you, I updated the server with the new certs and everything works fine.
You need to log in before you can comment on or make changes to this bug.