17 May
2014
17 May
'14
12:15 p.m.
On Wed, May 14, 2014 at 10:50 AM, Charley Sheets <rcsheets(a)acm.org> wrote:
I don't understand why they'd just revoke our
certs without explanation. The
new certs are working though.
They're now saying that it was revoked because the certificate was
hosting malware, citing this spamhaus report:
http://www.spamhaus.org/sbl/query/SBL222149'
They say there's a "KINS webinjects / MITM server" at the IP address
195.211.153.54. But sudoroom.org is at 173.255.221.152 so I don't
understand what this has to do with us.
Do we have any services at 195.211.153.54? Or can I tell Comodo they
made a mistake? If we don't resolve it with them, our new cert may get
revoked again.
17 May
17 May
1:17 p.m.
New subject: ssl revocation? new version of firefox/iceweasel
On 2014-05-17 12:15, Yar wrote:
I'm glad they've finally provided an explanation, but that seems like
something they should have been able to tell us right away, rather than
coming up with days later.
Could it be that someone else got our cert somehow, and was using it at
that address?
It doesn't look like anything is running at vm-4197.unit-is.com
(195.211.153.54), or at least nothing that's willing to talk to me...
All 1000 scanned ports on vm-4197.unit-is.com (195.211.153.54) are
filtered
--
Charley
3987
days inactive
3988
days old
2 comments
3 participants
participants (3)
-
Charley Sheets -
Matthew Senate -
Yar