-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all!
After always having problems with mozilla's certificate validation using OCSP I've recently upgraded to OCSPd 0.6.5. Instead of the error message I got with earlier OCSPd versions "Error establishing an encrypted connection to <xxx>. Error code: -8052." I now get this in mozilla: "Error trying to validate certificate from <xxx> using OCSP - old response" Anyone seen something like this? The system time can't be the problem, since both OCSP server and client are synced via NTP. OCSPd log shows only a single line per request, no error: ocspd[12029]: request for certificate serial 3 ocspd[12029]: request for certificate serial 2 System running OCSPd is linux. OCSP server certificate has the OCSPSigning EKU extension and the current CRL is valid until April, 1st. keyUsage = nonRepudiation, digitalSignature, keyEncipherment extendedKeyUsage = serverAuth, OCSPSigning Mozilla is version 1.7.3 if this makes any difference. Thanks for any help, Peter -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFCLtzTcKsx5K5ighwRArOAAJ9eOLRFKqnhQutK4pf9+FQGid9RbACdG0cf Lro2wmZFE2zAbf0GPPKrIuw= =6BZE -----END PGP SIGNATURE----- ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
