← GoDaddy cases
Bugzilla #1645832
Certificate Problem Report
GoDaddy: Expired CRLs
RESOLVED
FIXED
GoDaddy
AI Summary
GoDaddy experienced an incident where their Certificate Revocation Lists (CRLs) expired due to a failure in their system migration process. The issue was first reported by a customer on June 4, 2020, after the CRLs were found to be outdated. GoDaddy's engineering team promptly identified the problem and republished the CRLs on the same day. The incident highlighted gaps in their disaster recovery procedures, prompting GoDaddy to enhance their protocols to prevent future occurrences. They committed to migrating the CRL generation process to a clustered environment to improve reliability.
Chronology
- CRLs expired
- Customer reported expired CRLs
- Engineering team identified the issue
- New CRLs published
Participants
Daniela Hood
Ryan Sleevi
External References
Similar Local Cases
GoDaddy: Failure to revoke certificate with compromised key within 24 hours
GoDaddy: Agreed-Upon Website Domain Validation Method Issue
GoDaddy: failure to revoke underscores
GoDaddy: OV Documentation Reuse
GoDaddy: Document Reuse Issue
GoDaddy: improperly encoded certificate issued by Go Daddy Secure Certification Authority
GoDaddy: New GoDaddy incorrect issuance bug appears to be regression of 2010 issue
GoDaddy: Certificates issued with validity periods greater than 398-days