cacert-sysadm AT lists.cacert.org

Subject: CAcert System Admins discussion list

List archive

Date: Bad time value

From: security AT moritz-naumann.com
To: cacert-sysadm AT lists.cacert.org
Subject: Date: Bad time value
Date: Sat, 23 May 2009 12:12:50 +0000 (UTC)

Hi,

I just realized that the error given above is returned in the HTTP response
header (in the 'Date' field) of an OCSP response when my web browser
(Iceweasel
3.0.9) communicates with the CACert OCSP interface at http://ocsp.cacert.org/
.

Please find below a capture of the HTTP request and response headers (the user
agent is faked, but this should not matter).

This issue could possibly be related to this OpenSSL bug:
http://rt.openssl.org/Ticket/Display.html?id=767&user=guest&pass=guest

Please respond also to my posting address since I am not currently a
subscriber
of this mailing list.

Thanks in advance,

Moritz

POST / HTTP/1.1

Host: ocsp.cacert.org:80

User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-Language: de-de,de;q=0.8,en-us;q=0.5,en;q=0.3

Accept-Encoding: gzip,deflate

Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7

Keep-Alive: 300

Connection: keep-alive

Content-Length: 101

Content-Type: application/ocsp-request

Referer: http://ocsp.cacert.org/

0c0a0?0=0;0 +

HTTP/1.x 200 OK

Content-Type: application/ocsp-response

Content-Transfer-Encoding: Binary

Content-Length: 1507

Date: Bad time value

Expires: May 23 11:56:21 2009 GMT

Date: Bad time value, security, 05/23/2009
- Re: Date: Bad time value, Daniel Black, 05/24/2009