Site not safe warning in chrome.

Discussion in 'Feedback Section' started by PossumsDad, May 23, 2017.

  1. PossumsDad

    PossumsDad

    Joined:
    Aug 30, 2016
    Messages:
    87
    Likes Received:
    82
    Location:
    Edinburg, TX (Deep South Texas)
    Starting late this afternoon I get this error when trying to access this site:

    Your connection is not private
    Attackers might be trying to steal your information from www.gardenpondforum.com(for example, passwords, messages or credit cards).


    NET::ERR_CERT_AUTHORITY_INVALID

    I also tried Windows Internet Explorer and I still get this message.

    Phil
     
    PossumsDad, May 23, 2017
    #1
    1. Advertisements

  2. PossumsDad

    Lisak1

    Joined:
    Oct 28, 2013
    Messages:
    6,937
    Likes Received:
    7,789
    Location:
    Northern IL
    Yup. We all noted that on another thread. Clearly we were all scared away!
     
    Lisak1, May 23, 2017
    #2
    1. Advertisements

  3. PossumsDad

    Big Lou

    Joined:
    Sep 18, 2012
    Messages:
    4,523
    Likes Received:
    3,710
    Location:
    Desoto, Texas (Dallas County) North Texas, Zone 8a
    I got it on Windows Mail and Yahoo mail.
     
    Big Lou, May 23, 2017
    #3
  4. PossumsDad

    Ian Administrator

    Joined:
    Jul 26, 2011
    Messages:
    768
    Likes Received:
    498
    Thanks for the heads up - the SSL certificate didn't automatically renew for some reason (the thing we use for HTTPS), so I've manually renewed it while I speak to the hosting company :).
     
    Ian, May 23, 2017
    #4
    cas likes this.
  5. PossumsDad

    Ian Administrator

    Joined:
    Jul 26, 2011
    Messages:
    768
    Likes Received:
    498
    It looks like I've found the issue - when the control panel renews the SSL certificate, it creates a temporary directory on the website so that the certificate authority can validate the URL. As we've got our security settings set so tightly, the directory wasn't allowed to be created, so the authorisation check failed and the SSL certificate wasn't renewed.

    I've added a manual exclusion for that directory, so it should work when it tries to renew next time around. I'm also going to tweak our monitoring software to alert me to anything going wrong with SSL, as I didn't get any alerts overnight which should normally happen (as the sites are working fine, technically - but browsers will display warnings for expired certificates).
     
    Ian, May 23, 2017
    #5
  6. PossumsDad

    PossumsDad

    Joined:
    Aug 30, 2016
    Messages:
    87
    Likes Received:
    82
    Location:
    Edinburg, TX (Deep South Texas)
    Thanks lan for letting us know the problem.
     
    PossumsDad, May 23, 2017
    #6
    Ian likes this.
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.