add: message while reporting private key compromise

[gigi.git] / src / club / wpia / gigi / pages / main / RevocationNotice.templ

diff --git a/src/club/wpia/gigi/pages/main/RevocationNotice.templ b/src/club/wpia/gigi/pages/main/RevocationNotice.templ
new file mode 100644 (file)
index 0000000..c204f11
--- /dev/null
+++ b/src/club/wpia/gigi/pages/main/RevocationNotice.templ
@@ -0,0 +1,17 @@
+Subject: <?=_Certification Revocation Notice due to Key Compromise?>
+
+<?=_The private key for your certificate ${serial} was reported to be compromised. The certificate has therefore been revoked.?>
+
+<?=_The reporting user was able to sign a system-generated challenge and the signature verifies successfully with your public key.?>
+<?=_This means that they somehow have the ability to sign with your private key. This way your certificate could be used by someone else and thereby looses its value. This might have several causes:?>
+
+- <?=_Your private key became publicly accessible.?>
+- <?=_Your key pair was so weak that it could be broken by another individual.?>
+- <?=_Someone with authorized access to your private key (e.g. you) has initiated the revocation.?>
+
+<? if($message) { ?>
+The user supplied a message to help you resolve your security issue, to prevent further key compromises:
+---
+<?=$message?>
+---
+<? } ?>
\ No newline at end of file