Skip to Content.
Sympa Menu

cacert-sysadm - Re: Replacement of CAcert signing server - no service on Sep 11 14:00 - 22:00 CEST

cacert-sysadm AT lists.cacert.org

Subject: CAcert System Admins discussion list

List archive

Re: Replacement of CAcert signing server - no service on Sep 11 14:00 - 22:00 CEST


Chronological Thread 
  • From: Wytze van der Raay <wytze AT cacert.org>
  • To: cacert-sysadm AT lists.cacert.org
  • Subject: Re: Replacement of CAcert signing server - no service on Sep 11 14:00 - 22:00 CEST
  • Date: Sun, 13 Sep 2009 10:52:28 +0200
  • Authentication-results: lists.cacert.org; dkim=pass (1024-bit key) header.i= AT cacert.org; dkim-asp=none
Guillaume ROMAGNY schreef:
> ...
> I have reproduced the minor problem Bas has reported
> http://bugs.cacert.org/view.php?id=775

This is about the default validity for client-org certs, right?
If that is really two years, it will need to be adjusted in the
appropriate configuration files on the signing server (and thus
require a visit to the hosting center by 1 Oophaga + 2 CAcert
admins):

        /etc/ssl/openssl-client-org.cnf
        /etc/ssl/class3-client-org.cnf
        /etc/ssl/root3/client-org.cnf
        /etc/ssl/root4/client-org.cnf

Can this be confirmed officially somehow?
And what about the validity period for server-org certs?

Regards,
-- wytze

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature


Archive powered by MHonArc 2.6.16.

Top of Page