Solved

Does expired certificate works?

Posted on 2011-03-07
5
217 Views
Last Modified: 2012-05-11
I have a self signed certificate which is being used my one of our messaging server in our company. Recently I realized that certificate was expired 2 years back but it is still working is being used as the authentication to client. I am wondering how it is possible. Please note we have local company specific root CA. Please help me to understand how it is working in this scenario, I can provided more specific information in this regard. Thanks!
0
Comment
Question by:beer9
  • 2
  • 2
5 Comments
 
LVL 5

Accepted Solution

by:
alreadyinuse earned 250 total points
ID: 35063356
My understanding is that yes they still perform the SSL encryption. Of course it will continually prompt clients to accept the expired certificate. Whereas a good certificate would avoid the issue.
0
 
LVL 10

Assisted Solution

by:ThorinO
ThorinO earned 250 total points
ID: 35063381
Yes it will continue to work but will prompt. I would suggest buying a cert or you can get a free trusted one from http://cert.startcom.org/
0
 

Author Comment

by:beer9
ID: 35067093
On my client configuration file I see few setting for SSL. Please please me to understand it. Because it is set at false so that expired cert of server would also works? Thanks!

enable_verify_host="false"
enable_verify_hostname="false"

Open in new window

0
 
LVL 10

Expert Comment

by:ThorinO
ID: 35070653
What client is that on?
0
 

Author Comment

by:beer9
ID: 35070777
It is some java application.. internal built tool
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

So you need a certificate so you can offer SSL encryption.  But which one should you get?  There are so many choices out there! Here is a generic overview of the main types of SSL certificates sold by the majority of commercial Certification Auth…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question