We are in the process of migrating this forum. A new space will be available soon. We are sorry for the inconvenience.

Serious disturbances on SSL


Winit
24-03-2011, 21:09
Iran FTW.

jonlewi5
24-03-2011, 15:51
Hello,
OVH offers certificates Comodo SSL reselling.

One reseller of Comodo was hacked (an IT?)
and hackers have created certificates for SSL
domain names like google.com (mail.google.com?).
The certificates have been revoked, but right now
Panic mode is from Comodo in proceedings
Delivery of certificates.

Comodo wants to manually check each certificate level 1
and 2 to sign! Madness! Ie it must
forget the SSL delivery in less than 5 minutes. You
will also receive an email directly to Comodo
confirmations of delivery need to validate more.

This calls into question not hurt the procedures we
have set up for SSL particularly for mutu
and Exchange. We will adapt our procedures, but ...

It looks as if we're going to take away the decision
to stop the marketing of SSL certificates or
not yet. It is an activity with little growth
and even if you book them free SSL certificates
this does not interest you. It's okay, we do
not want us to save money But
this proves that it is not there. And so it is not
nothing to instruct our teams with the services
nobody needs. And we'll just continue to
provide SSL in the case of comprehensive key
Started as Exchange.

The answer: tomorrow.

Regards
Octave

oles@ovh.net
24-03-2011, 15:48
Hello,

OVH offers the reselling of SSl certificates from Comodo.

One reseller of Comodo was hacked (an IT?) and the hackers had generated SSL certificate for domain names like google.com (mail.google.com?). The certificates have been revoked, but right now Comodo is in panic mode regarding the delivery of and procedures for licenses.

Comodo wants to manually check each level 1 and level 2 certificate that they signed! Madness! This means that we should forget the delivery of SSL in less than 5 minutes. You will also receive an email directly from Comodo for delivery confirmation if you need to validate any more.

This affects OVH and calls into question the procedures we have put in place for shared hosting including SSL and Exchange. So we must adapt our procedures, but ...

We're also looking at whether we should stop marketing SSL certificates or not. It is an activity with little growth and even if you get the SSL certificates free, it doesn't really interest you. It's okay, we don't want to save money But it proves that it is not there. And so it is useless to have our teams with the services that nobody needs. And we'll just continue to provide the SSL as a full turnkey-service in the case of Exchange.

The answer: tomorrow.

All the best

Octave