On 2/11/07, Mike Hommey <[EMAIL PROTECTED]> wrote:
SEC_ERROR_INADEQUATE_KEY_USAGE
-8102 Certificate key usage inadequate for attempted operation.
(from http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html )
Pretty strange. Would you mind filing a bug at bugzilla.mozilla.org
and linking it to this one?
There are already plenty of them, and it is useless to add one.
See
http://gemal.dk/blog/2003/03/03/internet_explorer_just_doesnt_care_about_security/
Doesn't the "X509v3 Extended Key Usage" section come into play at all?
It specifies "TLS Server Authentication" as one of the usages. There
is another certificate in use in one of our internal sites that has an
identical certificate layout except that the "X509v3 Extended Key
Usage" field comes before the "X509v3 Key Usage" field unlike in this
certificate. That certificate works just fine in iceweasel.
Is it possible that Firefox/iceweasel/mozilla takes only the first of
the two fields? I'm relatively clueless about SSL/certificates so this
is at best an uninformed deduction.
Also, this is not just about IE. Even konqueror is able to validate
the certificate.
Regards,
--
Siddhesh Poyarekar
http://siddhesh.tk
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
