You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "Donald Woods (JIRA)" <de...@geronimo.apache.org> on 2005/08/24 22:10:13 UTC

[jira] Created: (GERONIMO-910) Default SSL certificate expired on 7/28/05

Default SSL certificate expired on 7/28/05
------------------------------------------

         Key: GERONIMO-910
         URL: http://issues.apache.org/jira/browse/GERONIMO-910
     Project: Geronimo
        Type: Bug
  Components: security  
    Versions: 1.0-M5    
 Environment: all
    Reporter: Donald Woods


The default cert supplied by Geronimo expired on 7/28/05.
The self-signed certificate needs to be recreated with an expiration date that is at least several years off (so the default cert can still be used after an initial install to access the Admin Console to install a real cert.)

Also, using the sha1 algorithm and DSA key format requires Windows XP SP2 users to turn on TLS support in Internet Explorer before IE can access any SSL protected content (Mozilla works fine.)  The default for most keys is the RSA algorithm, which works with IE and Mozilla default setups.


-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira

[jira] Closed: (GERONIMO-910) Default SSL certificate expired on 7/28/05

Posted by "Jeff Genender (JIRA)" <de...@geronimo.apache.org>.

     [ http://issues.apache.org/jira/browse/GERONIMO-910?page=all ]
     
Jeff Genender closed GERONIMO-910:
----------------------------------

    Fix Version: 1.0-M5
     Resolution: Fixed

New SSL cert good until 2015 signed with RSA algo

Sending        assembly/src/var/security/keystore
Transmitting file data .
Committed revision 239930.


> Default SSL certificate expired on 7/28/05
> ------------------------------------------
>
>          Key: GERONIMO-910
>          URL: http://issues.apache.org/jira/browse/GERONIMO-910
>      Project: Geronimo
>         Type: Bug
>   Components: security
>     Versions: 1.0-M5
>  Environment: all
>     Reporter: Donald Woods
>     Assignee: Jeff Genender
>      Fix For: 1.0-M5

>
> The default cert supplied by Geronimo expired on 7/28/05.
> The self-signed certificate needs to be recreated with an expiration date that is at least several years off (so the default cert can still be used after an initial install to access the Admin Console to install a real cert.)
> Also, using the sha1 algorithm and DSA key format requires Windows XP SP2 users to turn on TLS support in Internet Explorer before IE can access any SSL protected content (Mozilla works fine.)  The default for most keys is the RSA algorithm, which works with IE and Mozilla default setups.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira

[jira] Assigned: (GERONIMO-910) Default SSL certificate expired on 7/28/05

Posted by "Jeff Genender (JIRA)" <de...@geronimo.apache.org>.

     [ http://issues.apache.org/jira/browse/GERONIMO-910?page=all ]

Jeff Genender reassigned GERONIMO-910:
--------------------------------------

    Assign To: Jeff Genender

> Default SSL certificate expired on 7/28/05
> ------------------------------------------
>
>          Key: GERONIMO-910
>          URL: http://issues.apache.org/jira/browse/GERONIMO-910
>      Project: Geronimo
>         Type: Bug
>   Components: security
>     Versions: 1.0-M5
>  Environment: all
>     Reporter: Donald Woods
>     Assignee: Jeff Genender

>
> The default cert supplied by Geronimo expired on 7/28/05.
> The self-signed certificate needs to be recreated with an expiration date that is at least several years off (so the default cert can still be used after an initial install to access the Admin Console to install a real cert.)
> Also, using the sha1 algorithm and DSA key format requires Windows XP SP2 users to turn on TLS support in Internet Explorer before IE can access any SSL protected content (Mozilla works fine.)  The default for most keys is the RSA algorithm, which works with IE and Mozilla default setups.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira