[sldev] Problem accessing to secondlife.com sites with SSL (https)
Alissa Sabre
alissa_sabre at yahoo.co.jp
Sat Nov 3 19:13:49 PDT 2007
This is some kind of an issue report that should be redirected to a
person responsible for web server operation.
I'm afraid the OCSP responder run by the Second Life web site's
certification authority (DigiCert) is having some configuration
problem, that makes firefox users under a particular configuration
(e.g., me!) unable to log in to SL JIRA or SL Wiki sites.
Please contact to your CA company to examine and fix the issue.
The details follow:
I've been having problem logging in to wiki.secondlife.com and
jira.secondlife.com sites with Firefox these days. When I clicked on
"login", my firefox browser shows a message box with "error code
8048."
After some digging, I found the error code 8048 means "Invalid OCSP
signing certificate in OCSP reponse." Then, the workaround is
trivial. On Firefox menu bar, select "Tools > Options... >
Advanced... > Verification" to pop up the OCSP dialog box, and disable
the OCSP verification.
And I can log in to JIRA and Wiki.
However, I'm not confortable with this workaround, since it apparently
lower the level of protection through SSL (https). So, I want to fix
the _real_ issue. That is, the CA's OCSP responder is using some
_invalid_ certificate when signing OCSP response.
To fix it, someone in the CA company (DigiCert) needs to work. I want
someone in LL, as a customer of the CA, to contact to the CA company
to fix the issue.
Regards,
Alissa Sabre
--------------------------------------
Easy + Joy + Powerful = Yahoo! Bookmarks x Toolbar
http://pr.mail.yahoo.co.jp/toolbar/
More information about the SLDev
mailing list