Home
Projects
Help

Search:

pfSense

All Projects

pfSense

Overview
Activity
Roadmap
Issues
Gantt
Calendar
News
Documents

Custom queries

2.8.0 - Resolved/Closed
2.8.1 - Resolved/Closed
2.9.0 - All Open Bugs
2.9.0 - All Open Features
2.9.0 - All Open Issues
2.9.0 - All Open Regressions
2.9.0 - Feedback
2.9.0 - Needs Attention
2.9.0 - New/Confirmed
2.9.0 - Pull Requests
2.9.0 - Regressions affecting 2.9.0
2.9.0 - Resolved/Closed
25.07 Plus - All Closed Issues
25.07 Target - All Closed Issues
25.11 Plus - All Closed Issues
25.11 Target - All Closed Issues
25.11.1 Plus - All Closed Issues
25.11.1 Target - All Closed Issues
26.03 Plus - All Closed Issues
26.03 Target - All Closed Issues
26.03.1 Plus - All Closed Issues
26.03.1 Target - All Closed Issues
26.07 Plus - All Closed Issues
26.07 Plus - All Open Issues
26.07 Plus - Feedback Issues
26.07 Plus - Needs Attention/Work
26.07 Plus - New/Confirmed/In Progress Issues
26.07 Plus - Pull Request Review
26.07 Plus - Waiting on Merge
26.07 Target - All Closed Issues
26.07 Target - All Open Issues
All Open Issues assigned to Me
All Open Pull Requests
Any Target - All Open Regressions
Any Target - Feedback Issues
CE-Next - All Closed Issues (Move to specific target)
CE-Next - All Open Issues
CE-Next - Feedback (Likely needs target changed)
New Issues by Category - Future Target
New Issues by Category - No Target
New Issues by Category - No Target+Future
No Target - All Open Issues (Base Only)
No Target - New Issues (Base Only)
No Target - New Issues (Base and Packages)
Release Notes - CE Target Version (DO NOT EDIT)
Release Notes - Plus Target Version (DO NOT EDIT)
Release Notes - Target Version (DO NOT EDIT)

Actions

Copy link

Bug #3591

closed

Impossible to edit CRLs in 2.1.1

Added by Doktor Notor about 12 years ago. Updated about 12 years ago.

Status:

Resolved

Priority:

High

Assignee:

Category:

Certificates

Target version:

2.1.2

Start date:

04/09/2014

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.1

Affected Architecture:

All

Description

See https://forum.pfsense.org/index.php?topic=74935.msg408977#msg408977

Since lots of people will want/need to revoke their certs, this really should be fixed in 2.1.2

History
Notes
Property changes

Actions

Copy link

Updated by Jim Pingle about 12 years ago

A fix is coming but ideally you'd create a whole new CA and Cert structure if you believe yours has been compromised. Re-using the CA + Revoking certs should only be done if the CA's key had no chance of being compromised.

New CA + New certs is also faster than Revoking eleventy hundred certs plus regenerating them all. If you have to reissue all new clients anyway, there's little benefit to taking the revocation path.

Actions

Copy link

Updated by Jim Pingle about 12 years ago

Status changed from New to Feedback
% Done changed from 0 to 100

Applied in changeset commit:d22169cfd68a26c04ca6d1aa997575f1b3e4cc80.

Actions

Copy link

Updated by Jim Pingle about 12 years ago

Applied in changeset commit:80f48850307dea4ceb08dc1a785dd24322b5283d.

Actions

Copy link

Updated by Doktor Notor about 12 years ago

OK, fix works, thanks. It is indeed correct that starting with a completely new CA is best solution in this case, but I'd still like to keep track of the revoked certificates.

Actions

Copy link

Updated by Chris Buechler about 12 years ago

Status changed from Feedback to Resolved
Target version set to 2.1.2

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #3591

Impossible to edit CRLs in 2.1.1

Updated by Jim Pingle about 12 years ago

Updated by Jim Pingle about 12 years ago

Updated by Jim Pingle about 12 years ago

Updated by Doktor Notor about 12 years ago

Updated by Chris Buechler about 12 years ago