On Fri, 16 Jul 1999, Stefan Kelm wrote:
> Holger,
>
> > > Here, server cert:
> > >
> > > > > Validity
> > > > > Not Before: Jul 13 14:36:12 1999 GMT
> > > > > Not After : Jul 12 14:36:12 2000 GMT
> > >
> > > But the problem is solved. But don't ask me how I have done it :-)))
> > > (maybe the -msie_hack option to ca program)
> >
> > I guess the problem has been solved overnight ;-)
> > It could be possible that MSIE didn'T realized
> > yesterday that "Jul 13 14:36:12 1999 GMT" is past.
> > But today, Jul 14th, MSIE knows for sure this cert
> > entered it's own validity period ;-)
> >
> > No, I'm not kidding, some reports have shown, this
> > is reality.
>
> This is true, I'm afraid. There are a couple of different browsers
> (some Netscape browsers are vulnerable as well) that do not accept
> certificates as valid on the very same day as the validity period
> of the cert starts.
Well.... It's not exactly related to the DAY of the start of the
certificate, but to the DAY and TIME...
To check this, just change your time to some hours in the future, and
check. I did that for my certificates (I had the exact same problem as
you), and putting my PC clock 1 hour in the future solved the problem...
Please note that I live in Paris, which is GMT+1... I think there's a lot
of products unable to deal with TimeZones...
--
Erwann ABALEA
System and Development Engineer - Certplus SA
[EMAIL PROTECTED]
- RSA PGP Key ID: 0x2D0EABD5 -
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
