Am 04.12.2020 um 16:52 schrieb [email protected]: > I configured monit to monitor the TLS certificate validity of all of our > highly productive websites. To all websites, the unnecessary full > certificate (without root CA) was installed. However, on 30th of May > 2020 one of the chain certificates (COMODO) ran out of its validity > period. Obviously monit only checks for the server certificate, that's > why the check did not notice this, and such a check is completely > pointless. It led to a massive damage to my company, and since I was to > deal with monitoring as well as TLS certificates, I had to move on to > find a new job.
I do not understand why a server certificate is valid longer than any of the intermediate certificates. Has the COMODO intermediate certificate been revoked or did it reach its valid date? Regards, Werner -- Werner Flamme, Abt. WKDV SAP Certified Technology Associate for NetWeaver/Oracle Helmholtz-Zentrum für Umweltforschung GmbH - UFZ Permoserstr. 15 - 04318 Leipzig / Germany Tel.: +49 341 235-1921 - Fax +49 341 235-451921 Information nach §§ 37a HGB, 35a GmbHG: Sitz der Gesellschaft: Leipzig Registergericht: Amtsgericht Leipzig, Handelsregister Nr. B 4703 Vorsitzender des Aufsichtsrats: MinDirig'in Oda Keppler Wissenschaftlicher Geschäftsführer: Prof. Dr. Georg Teutsch Administrative Geschäftsführerin: Dr. Sabine König
smime.p7s
Description: S/MIME Cryptographic Signature
