Re: Verisign SSL Certificate Issue- Resolved, I think.

From: Bernard (qbernard_at_hotmail.com.discuss)
Date: 05/25/04 

Date: Tue, 25 May 2004 18:43:03 +0800

Are you referring ms04-011 ? this was out in april. 

-- 
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/
"Krams" <kramz@hotmail.com> wrote in message
news:O#Ec5qUQEHA.2248@TK2MSFTNGP12.phx.gbl...
> All,
>
> The issue was not really related to verisign's certificate. It was the SSL
> vulnerability. I had to apply SP4 and the Post SP4 fix for the SSL
> vulnerability. I called Verisign and their response was, if the
certificate
> works some of the time, then call someone else. I would have expected
themto
> atleast ask me if thePost SP4 fix was in place. I guess there could be too
> many factors and expecting them to be any more than certificate sellers is
> not fair to them.
>
> Thanks
> Krams
>
> "Krams" <kramz@hotmail.com> wrote in message
> news:O$WbqtEPEHA.2716@tk2msftngp13.phx.gbl...
> > All,
> >
> > I recently updated the certificate on my web server with a new
certificate
> > from verisign as my old one for the site had expired. When I set out to
do
> > this, I also noticed the issue with the versign certificate having
> expired.
> > I replaced both. Then rebooted the server. It worked fine - I was able
to
> > get to the pages that I had marked to be under SSL fine. Over the
weekend
> ,
> > someting must have happened, because I was not able to access the SSL
only
> > pages via https. Then I rebooted the server that night ( Monday ) and
the
> > problem went away - I was once again able to access the SSL only pages
via
> > https. A week went by and this happened again. Rebooting the server
seemed
> > to fix the problem once again.
> >
> > I have the following in the certificate stores:
> >
> > Trusted Root:
> >     Verign Class 3 Public Primary CA..Expires on 8/1/2028
> >
> > Intermedite Certificates:
> >     The new verisign certificate www.verisign.com/CPS.by.ref.Incorp.
> > LIABILITY LTD.(c)97 verisign. Expires on 10/24/2011
> >     Grand Parent Certificate is Verign Class 3 Public Primary CA.
> >
> > Personal:
> >         The new  certificate I obtained for my web site. Expires on
> > 10/03/2005,
> >         Parent certificate is  www.verisign.com/CPS.by.ref.Incorp.
> LIABILITY
> > LTD.(c)97 verisign
> >         Grand Parent Certificate is Verign Class 3 Public Primary CA.
> >
> >
> > Can anyone help please.
> >
> >
> > Thanks
> > Krams
> >
> >
>
>

Relevant Pages

  • Re: Verisign SSL Certificate Issue
    ... > I recently updated the certificate on my web server with a new certificate ... Then rebooted the server. ... > get to the pages that I had marked to be under SSL fine. ... The new verisign certificate www.verisign.com/CPS.by.ref.Incorp. ...
    (microsoft.public.inetserver.iis.security)
  • Re: "Common Name" of iSeries hosted website?
    ... applications, including an order entry system, using CGI. ... I get a "Security Alert" message when I use the SSL with the warning being "The name on the security certificate does not match the name of the site.". ... Verisign says the solution involves the "Common Name" of the certificate not matching the configuration of my website. ...
    (comp.sys.ibm.as400.misc)
  • Re: [kde] kmail cannot verify authenticity of email server
    ... certificates issued by Verisign. ... Can you check with a different SSL using site and whether its certificate ... I don't know how to check which ones have a SSL ... and who provides the authentication. ...
    (KDE)
  • Autodiscover question..
    ... SSL is implemented in the form of a Verisign certificate. ... This CAS server is also our Autodiscover server. ... How can i make our Verisign cert cover both Autodiscover and OWA? ...
    (microsoft.public.exchange.admin)
  • Re: Verisign SSL Certificate Issue
    ... If it's working after you reboot, ... "Krams" wrote in message ... >> Bernard Cheah ... >>> I recently updated the certificate on my web server with a new> certificate ...
    (microsoft.public.inetserver.iis.security)