7:30 – 4:00 VISIBILITY

• It’s gonna be *hot* today.
• Looking into the java.security.cert.CertificateException: java.io.IOException: DerInputStream.getLength(): lengthTag=109, too big.
  • My favorite so far, if just for the title: Java Certificate Parsing
    (…or why keytool is ruining your life)
    • There are extra characters at the end of the certificate file which the “parser” is attempting to interpret as the start of another certificate. The most common way to encounter this error is to have one, or more, blank lines at the end of the certificate file. A line termination sequence is permitted (but not required) at the end of the final “—–END” line, but there can be no more than one. So, delete everything after the final “—–END” line.
  • http://monduke.com/2006/10/04/verisigns-new-intermediate-ca-and-you/
• Asked for port 443 to be opened based on Allen’s suggestion.
• Still not sure if the certs are in correctly. When I was initially checking on Jeff’s machine, the cert came back as unverified when checking from an outside browser. On the machine itself, it was fine. Then later, it was fine. Very confused.
• One of Jeff’s PKI team is sending be a section of their keystore ‘how to” for Windows Server that might be some help

FP

• Ordered Tom’s parts
• Ordered some pressure sensitive resistors to play with

Cool thing for the day:

• Google Correlate