i have a general question:
micha just enabled the cert check for signature validation and throws an error, if cert is not valid (revoked or suspended)
what if a cert is (expired)? and someone just signed with an expired cert - this still gets valid - or? i'll check this later since i cannot just use the browser, since he checks *g*
and more interesting: should there be thrown an error or should the user get the check page back
with the note: signature valid if the signature has been prior to expiration or suspending/revokation and the statement the cert is not valid (expired) and red (suspended/revoked) anymore with date of statuschange of course
with signature invalid: if the signature has been issued after expiration date, suspend/revoke and the note that the cert is invalid (expired, suspended, revoked) with date
so just my thoughts about this...
because i think - its not an error in the sense of an error for openca (wrong config or something is not working properly)
ist 'just' a logical cert-status related issue and should get handled as such - or?
greetings dalini -- Ives Steglich Email: [EMAIL PROTECTED] System Administration Tel.: +49 (0)3677 - 69 4382/4383 Fax: +49 (0)3677 - 69 4399
Fraunhofer Institute for Digital Media Technology Langewiesener Strasse 22 98693 Ilmenau Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
