What to do when a server id is stolen? Can the following option help?
Compare Public Keys Against Those Stored in Address Book
Recert Server ID
Thanks.
Subject: What to do when a server id is stolen?
generate a new key for that stolen server id
Subject: RE: What to do when a server id is stolen?
thanks for your information.
is generate a new key = recertify the server id
any procedure i can follow?
thank you.
Subject: RE: What to do when a server id is stolen?
Recertifying an ID file does not re-create the key pair, so it is necessary to really re-create the ID file (as you would when registering a new server).
How I would do this:
-
Disable replication of the address book on the compromised server.
-
On a different server, rename the server document of the compromised server to something different.
-
On the other server, register a new server with the exact same name as the compromised server. An ID file and a new server document will be created.
-
Copy the public key from the new server document to the renamed server document.
-
Remove the new server document and rename the old server document back to the correct server name.
-
Re-enable replication of the address book on the compromised server, replicate the changes.
-
Shut down the compromised server, replace the ID file and restart.
-
Ensure check public key is enabled.
cheers,
Bram
Subject: Wow, what do you do when a Cert ID is stolen ?
We’ve got some old Cert IDs floating around at other sites. We’ve migrated all of our cert ids to the CA process but several old ones are still out there. We’ve told those who have them to delete and cease using them but they occasionally “forget” and register a user (usually incorrectly). We’d love to disable them if possible.