On Friday 23 January 2004 15:37, Chris Covell wrote: > Guys, > > I have just experienced a Security Alert message from my live OpenCA > 0.9.1-1 environment. > > Upon approving the revocation request the screen reports a "Error 690 > Configuration Error. Error while storing the request." > > My Apache log reports: > > "SECURITY ALERT BY PKI: database failed during storing a correct CRR which > follows > -----BEGIN HEADER------ > ..."
I have been analysing this more and have reached the following conclusion: During the approveCSR and approveCSRnotsigned perl commands a new CSR Req number is obtained and stored as part of $req. This number is then used in the insert query to insert the CRR into the CRR table. In our case we have found that the number being used belongs to an already existing CRR !!!! So the insert query fails. So my question now is how does OpenCA::REQ get the next request number, is there a file with the number in or is it calculated ? Why is it returning an already used number ? Please can anybody help ! Chris... ------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
