Re: [openssl-users] Strange problem in using verify command
> The computer has been up running for quite a while. I wonder if it > really needs NTP to take that long to sync up. > Firewall blocking port 123/TCP or 123/UDP? ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Re: [openssl-users] Strange problem in using verify command
Hi Jakob, The computer has been up running for quite a while. I wonder if it really needs NTP to take that long to sync up. David On Thu, Sep 10, 2015 at 7:20 PM, Jakob Bohm wrote: > On 11/09/2015 02:13, David Li wrote: >> >> Hi, >> >> I am using "openssl verify -CAfile " to verify the >> certificate. It's been running as expected. >> >> Recently I started to run this command on a different x86 platform. >> What I found is the the first few times I always got: >> >> error 9 at 1 depth lookup:certificate is not yet valid >> >> Then I waited 10 min and reran the same cmd and got "OK". >> >> I am puzzled by this. Is this a some timing issue? > > Chances are that the clock on the computer was wrong until > NTP corrected it from the network. >> >> >> My openssl version is: >> >> OpenSSL 1.0.1e-fips 11 Feb 2013 > > That's kind of old. > > > Enjoy > > Jakob > -- > Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com > Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10 > This public discussion message is non-binding and may contain errors. > WiseMo - Remote Service Management for PCs, Phones and Embedded > > ___ > openssl-users mailing list > To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Re: [openssl-users] Strange problem in using verify command
On 11/09/2015 02:13, David Li wrote: Hi, I am using "openssl verify -CAfile " to verify the certificate. It's been running as expected. Recently I started to run this command on a different x86 platform. What I found is the the first few times I always got: error 9 at 1 depth lookup:certificate is not yet valid Then I waited 10 min and reran the same cmd and got "OK". I am puzzled by this. Is this a some timing issue? Chances are that the clock on the computer was wrong until NTP corrected it from the network. My openssl version is: OpenSSL 1.0.1e-fips 11 Feb 2013 That's kind of old. Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users