Server Snafu Makes Microsoft Beg For CA Audit Data From Its Partners (softpedia.com)

← Back to Stories (view on slashdot.org)

Server Snafu Makes Microsoft Beg For CA Audit Data From Its Partners (softpedia.com)

Posted by BeauHD on Friday March 4, 2016 @05:33PM from the updated-records dept.

An anonymous reader writes: Microsoft, just like Google, Apple, and Mozilla, is part of the CA/BForum, an organization of web browser vendors and certification authorities (CAs). As a browser vendor, Microsoft maintains a list of authorized CAs and their respective root certificates. According to a message on the CA/BForum, there was an error on the server that was running a CRM application that managed this list of trusted certificates and the adjacent details regarding each certificate and CA. The data is lost forever and Microsoft is now asking CAs to resend their most recent audits. Currently a lot of certs are broken in Edge and IE. Microsoft says that it lost audit data for 147 root certificates, which resulted in many SSL/TLS certificates showing errors inside the company's products.

7 of 115 comments (clear)

Min score:

Reason:

Sort:

wtf by lastman71 · 2016-03-04 17:41 · Score: 5, Interesting

Seriously. No backup?
1. Re:wtf by Forever+Wondering · 2016-03-04 18:07 · Score: 4, Insightful
  
  Seriously. No backup?
  Maybe they used Azure for their backup ...
  
  --
  Like a good neighbor, fsck is there ...
2. Re:wtf by Anonymous Coward · 2016-03-04 18:21 · Score: 5, Insightful
  
  This might be the correct explanation. I have seen the technology management to actually trust on their "the cloud is the backup" fairytale. And then we lost data multiple times thanks to software or administration errors which deleted the data from all replicates. After fourth data loss the dumb ass management started to plan a real write-only backup system. Thankfully I don''t work on that company anymore as the management is still there planning for their next failures.
3. Re:wtf by unrtst · 2016-03-04 19:09 · Score: 3, Insightful
  
  ... rolled back to an old backup. As a result, we lost audit data for about 147 roots.
  How the fuck are there that many changes for root CA's withing the period of one backup?
4. Re:wtf by gmack · 2016-03-05 01:13 · Score: 3, Interesting
  
  It's Microsoft. Data loss from lack of backups is has happened to them before. Unfortunately they didn't learn from past mistakes.
5. Re:wtf by Sarten-X · 2016-03-05 06:58 · Score: 3, Insightful
  
  There are fallbacks, backups, and disaster recovery mechanisms. They are three different things, with three different purposes, and managers love to confuse them.
  
  --
  You do not have a moral or legal right to do absolutely anything you want.
Passive voice to the rescue by DNS-and-BIND · 2016-03-04 20:46 · Score: 3, Funny

"there was an error on the server" "Our CRM system suffered a data loss" way to state the fact that a major company like Microsoft can't even run their own systems correctly. Well where are the fucking backups? Whoopsy-doodle! Looks like Microsoft is about as competent as a 15-man company at backing up critical data.

--
Shutting down free speech with violence isn't fighting fascism. It IS fascism!