[Bug 689293] New: OCSP error to https:// all gnome ssl links

["sysadmin" (bugzilla.gnome.org) <bugzilla gnome org>]

https://bugzilla.gnome.org/show_bug.cgi?id=689293
  sysadmin | Certificates | unspecified

           Summary: OCSP error to https:// all gnome ssl links
    Classification: Infrastructure
           Product: sysadmin
           Version: unspecified
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: major
          Priority: Normal
         Component: Certificates
        AssignedTo: sysadmin-maint gnome bugs
        ReportedBy: nls1729 gmail com
         QAContact: sysadmin-maint gnome bugs
     GNOME version: ---


OCSP error to https://extensions.gnome.org etc...

This started failing yesterday.

Your SSL Certificate includes an OCSP URI in the Authority Information Access
section.

Whoever manages your secure websites needs to contact the Certificate vendor
and find out why their server is failing to verify.  

The verification option can be turned off in a web browser but it is a foolish
thing to do.  OCSP verification is optional, but if you pay for a certificate
that contains an OCSP URI it should work.  It has worked in the past.  If OCSP
fails you do not know the certificate you received for the SSL connection is
valid.  In other words the connection is not secure.   

I emailed your security and received a reply with the following which makes no
sense to me. "enhancement request"???

> Feel free to file an enhancement request in GNOME Bugzilla against the
> "sysadmin" product in case there is no report yet.

You have broken infrastructure.

-- 
Configure bugmail: https://bugzilla.gnome.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the QA contact of the bug.
You are watching the assignee of the bug.