Nelson B. Bolyard wrote:
If you think OCSP is the problem, turn it off completely. If that solvesSTRANGE :O)
all your problems, then OCSP was the problem. Otherwise it wasn't.
The problem wasnt OCSP but was me not being logged in to my security device.
Now I see that this is probably something I MUST do but why does mozilla complain about "for unknwon reasons" and does not simply ask me to login to the security device ??
Anyway the view of my certificate now states that
"The certificate has been verified for the following uses:"
SSL Client Certificate
SSL Server Certificate
Email Signer Certificate
Email Recipient Certificate
So this looks great now :o)
However the same message appears when trying to encrypt a message
On to the next chapter ->
I wonder if there's a problem with the German translation of the mozilla
dialogs. The english version doesn't talk about private keys. It talks
about "personal certificates", IINM.
I am running mozilla / english
Previously, you wrote:
Ergo, you have a private key and it works.Now I got my private key and imported it into Mozilla without any
problem. I can read any encrypted mail that I get from any siemens
employee.
The problem seems to be with your personal certificate, not your private key.
I suspect that mozilla finds something wrong with your certificate, thinking
it is not suitable for email.
Earlier you posted someone else's cert. Why don't you post your own cert here?
see attachment
As quoted above, you said you imported your private key, but you didn't say how you did it. You also didn't mention your own certificate. Please explain the steps you followed to import your private key and certificate.Private key import:
In the Certificate Manager click on Import and select my *.p12 file. Entering passwords and there it was
Certificate: see below
You also wrote:Tssk tssk me Penguin me not like Billys Devil Code :o)
I'm going to guess here that you're using a windows PC, and you're attempting to import .cer or .der files with a file:// URL. Or perhapsOne hint probably: I can not import any public key from anyone. It
silently ignores the import and does NOT show the other people in the
tabbed list box
you're downloading the certs from a server that sends them with the MIME
type application/pkix-cert. Did I guess right? If I'm right, then you're
actually importing them into Windows' cert store, not mozilla's.
But now I see that I am a totally newbie to PKI/Crypto stuff (and probably the rest of the world which is reading this mail sees too :o)
I DID NOT import my public key (is that what you mean with certificate ??)
So I tried now but to no luck see below ->
You must import them with the proper MIME content type for mozilla to recognize them.And that is ? I tried with application/x-x509-user-cert but mozilla simply tries to save it
The same applies for email and ca mime type
(I tried via apache with configure mimetypes for files ending with *.der)
Trying to access it via file://....... returns even more mystery:
It states
You have choosen to download a file of type: "Calendar VCS" [application/octet-stream] from ......
again offering only to "download" it or opening it using konqueror
I have attached my public key for what its worth
Looks like we are approaching the finish straight ! GOGOGO
I am really feeling VERY THANKFUL for the support/help so far.
Thanx ET
[EMAIL PROTECTED]
Description: Binary data
