On 01/26/2009 08:43 PM, Jean-Marc Desperrier:
It should work with Windows Server 2003 (not with 2K) and Windows XP clients **with SP3**.
The problem we were seeing is, that IIS (or better the certificate viewer - MMC certificate snap-in) complains about invalid signature or certificate corrupted (even though it apparently showed the details correctly :S).
Searching through forums and postings I've found fairly recent stuff like: "Windows XP/2003 cannot consume certificates using SHA2 algorithms (SHA256, SHA512, SHA384)."
It really surprising that you should have problem with Windows Server 2003. Whilst I didn't spend too much time investigating SHA-2 with IIS, I know some other software that successfully use it on W2K3.
A solution would be extremely appreciated. Can anybody with good knowledge on this platform advise?
Firefox knows about SHA-2 since Firefox 2.
Legacy software will certainly fail, like Firefox 1.5 and IE6 (maybe also IE7 on XP). I know those should be discouraged from being used, but can we risk it for them to fail? I think IE6 still has some followers, no (~20%)?
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: start...@startcom.org Blog: https://blog.startcom.org -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
