tags:

views:

36

answers:

2
Q: 

SSL Certificated Validity

Hi, I'm using an SSL certificate from geotrust. I just ordered and installed it this weekend. However when I try to access my website using https, firefox (and the other browsers as well) the browser warns that the certificate expired a few days ago.

I guess there could be two reasons:

  1. I made a mistake during the installation of the certificate
  2. Geotrust did not sign the certificate properly.

First I want to rule out the second reason considering my browser tells me the certificate expired a few days ago. This does not make sense at all.

Is there a way to extract the expiration date from the certificate?

Thanks!

+1  A: 

Sure.... check the certificate in the browser. Click on the not valid warning / broken SSL symbol in the address bar, it should give you an option to view the certificate ;)

TomTom  2010-03-15 15:47:31
Ok I was able to view the certificate. For one thing the server name in the certificate is wrong. I'm suspecting somehow plesk is overriding my ssl.conf and using another certificate. This dedicated server came plesk pre-installed, even though I never used Plesk directly it I think Plesk is overriding some configurations. In my ssl.conf I've specifically given the address to the correct certificate, but apparently it is not the one delivered to the browser.
Haluk  2010-03-15 16:42:16
+1  A: 

TomTom's answer is right on!

Just about any browser will let you see the details of the certificate. There's always a Valid From field and a Valid To field describing the cert's validity period.

Also - check the subject DN and issuer DN. The Subject DN describes your server, the Issuer DN describes the signer. The issuer should be GeoTrust - if the issuer is not GeoTrust, you are not configured correctly, you are likely to be using the cert that came with the web server.

bethlakshmi  2010-03-15 15:54:16
I think you are right about me using the cert which came with the server. How can I make sure that the server uses the new certificate. I've already modified the ssl.conf.
Haluk  2010-03-15 16:43:32

related questions

How do I add a MIME type to .htaccess?
Difference between the Apache HTTP Server and Apache Tomcat?
How do I support SSL Client Certificate authentication?
Why can't I connect to my CAS server with Perl's AuthCAS?
Cleanest & Fastest server setup for Django
Installing Apache Web Server on 64 Bit Mac
Running Apache alongside another web server?
Algorithm behind MD5Crypt
Can you compile Apache HTTP Server and redeploy its binaries to a different location ?
mod_rewrite rule to redirect all requests except for one specific path
How do I create a self signed SSL certificate to use while testing a web app.
Software for Webserver Log Analysis?
What is the difference between an endpoint, a service, and a port when working with webservices?
What are the proper permissions for an upload folder with PHP/Apache?
mod_rewrite to alias one file suffix type to another
How do you redirect HTTPS to HTTP?
Using mod_rewrite to Mimic SSL Virtual Hosts?
User authentication on Resin webserver
How do you set up Python scripts to work in Apache 2.0?
Block user access to internals of a site using HTTP_REFERER
.htaccess directives to *not* redirect certain URLs
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP