View Issue Details

IDProjectCategoryView StatusLast Update
0000066Main CAcert Websitecertificate issuingpublic2013-01-15 18:31
ReporterSourcerer Assigned ToSourcerer  
PrioritylowSeverityfeatureReproducibilityrandom
Status closedResolutionno change required 
Fixed in Version2012 Q4 
Summary0000066: Notice of system outage due to intrusion detection
DescriptionIt would be good to inform users on the website, when the certificate issueing system is currently down, because an intrusion detection had shut it down.
This can happen when a broken certificate request is sent, or bugs in the software show up.
TagsNo tags attached.
Reviewed by
Test Instructions

Relationships

related to 0000175 closedSourcerer We need a way to shutdown the website 

Activities

evaldo

2005-10-21 13:09

developer   ~0000022

Maybe we need the system to show it is suspended, but not tell users what happened, or maybe state "malfunction" or "problems" but not "intrusion"

-less details to the attacker, less data he can work with;
-less "intrusion" alerts to the public when they might not be intrusion... false-positives are not exactly fun

duane

2006-08-17 04:13

developer   ~0000591

Does bug 0000175 fix this issue or do we need something else?

homer

2006-08-19 09:03

reporter   ~0000612

does 0000175 provides a way to warn the user of the partial "shutdown" of the site ?

duane

2006-08-19 09:55

developer   ~0000614

bug 0000175 displays a warning to the user that the system can't issue certifcates at this point in time due to maintainence reasons (or something to that effect)...

It doesn't actually shutdown or block the entire site, just selective pages...

Sourcerer

2009-05-31 00:31

administrator   ~0001418

We have implemented an automatic shutdown of certain parts of the website when the database isn't available. An additional shutdown of the certificate management parts in case of the link to the signing server goes down would be helpful too.

Issue History

Date Modified Username Field Change
2005-09-22 00:19 Sourcerer New Issue
2005-10-21 13:09 evaldo Note Added: 0000022
2006-03-22 09:04 evaldo Relationship added related to 0000175
2006-08-17 04:13 duane Status new => needs work
2006-08-17 04:13 duane Assigned To => Sourcerer
2006-08-17 04:13 duane Note Added: 0000591
2006-08-19 09:03 homer Note Added: 0000612
2006-08-19 09:55 duane Note Added: 0000614
2009-05-31 00:31 Sourcerer Note Added: 0001418
2011-06-22 00:09 NEOatNHNG Source_changeset_attached => cacert-devel master aaa11c69
2012-12-20 18:17 Werner Dworak Status needs work => closed
2012-12-20 18:17 Werner Dworak Resolution open => no change required
2013-01-15 18:31 Werner Dworak Fixed in Version => 2012 Q4