i am getting this notice in the chrome console on every page that has google adsense on my site
The SSL certificate used to load resources from https://sync.mookie1.cn will be distrusted in M70
my domain has nothing to do with https://sync.mookie1.cn , is it like a general message? or do i have to replace my SSL certificate?
my certificate is issued by commodo, i think they have nothing to do with that
let me know what you think
It's an ad from an ad server that has certificate signed by an untrusted root certificate.
It might be from google or another ad network or your site might just be infected.
The only way to make it stop is to eliminate the reference to the site/page with the bad cert.
Related
Is it possible to use a Cloudflare generated TLS certficate for an internal website that is not available over the Internet? So any user within the internal network would not receive certificate errors when visiting that website.
When I search for this, I get Cloudflare results that are confusing.
From what I've always been aware of, an internal CA certificate would need to be set up. You can then generate and sign certificates for internal websites. Users would need to trust the CA's certificate so they don't get errors. In the case of a Windows CA/domain, users that are on that domain would not receive certificate errors.
I'm not sure what kind of certificate you mean. If you refer to Cloudflare Origin CA certificates: these are clearly not usable for this purpose:
Origin CA certificates only encrypt traffic between Cloudflare and your origin web server and are not trusted by client browsers when directly accessing your origin website outside of Cloudflare.
If you refer to the certificates seen by clients when accessing a site protected by Cloudflare: these cannot be used since the private key is private to Cloudflare but the private key would actually be needed in your own server.
On Windows10 I have an internal website on iis, which I access through a url https://localhost:44300.
Currently I have the security messages come up when I first load the url and I have the broken padlock.
Unfortunately the network I'm on blocks security certificate warnings and I can't get to my site.
Is it possible to buy an SSL certificate for an internal site?
At the moment I'm using mkcert to be my own CA, but I'm told this is not suitable for a production site.
Thanks Ian.
I've tried to search stackoverflow for an answer to this, and I've been around on google - to no avail.
Can you please help me understand what I need to do to get a signed and secure SSL/HTTPs for my company's site?
I'm trying to avoid the current warning at https://attensi.com/
Thank you so much for any help.
/ Frustrated game developer trying to play webdev
You might be using self signed or Free SSL Certificate for your website. In such case browser display "The site's security certificate is not trusted!" warning message. To remove this error message you need to install SSL certificate issued by trusted Certificate Authorities like Symantec, GeoTrust, Thawte, etc.
I noticed that when I try to access sites like Gmail, Facebook and Twitter while connected to corporate network, Firefox shows an 'untrusted certificate' error and I have to add an exception to access those sites. I don't get the same exception when I try to access sites like Amazon and Paypal. I looked at the certs causing the exceptions and they all have my employer 'XYZ Inc' as the CA.
I am not that familiar with certs and wanted to know to know what is going on in the corporate network. How could Gmail serve a cert signed by my employer? When I access Gmail from home, I get the correct cert signed by Thawte.
Should I be worried about this and change my passwords for all the sites that cause the cert exception?
I'm not an expert on certificates either, but it appears that your company is intercepting the SSL traffic, and to do that, they have to use their own certificates to encrypt the portion between your computer and the company firewall/gateway (?). You are probably getting an error because a) the CA is not trusted by your computer or / and b) the certificate CN (domain) mismatch.
May be nothing... but it appears something fishy is going on there.
I have activated SSL in live magento store.If i check this url https://www.rave-nation.com/index.php, i m getting this error "This Connection is Untrusted".I can't figure out the solution.Do you need more information to find the solution?
The SSL certificate you've installed is:
Self signed
Signed for https://localhost, not https://www.rave-nation.com
SSL certificates serve two purposes. The first is a means to encrypt the data being transferred between the client and the server. The second is functioning as a method of verifying the identity of the server you are contacting.
Certificates that are self-signed will always generate warnings to people visiting your site because the certificate has not been signed by a high authority. The higher authority, called a CA, vouch for your server being the server your visitor thinks it is.
Anyone could create an SSL certificate for the domain https://mail.google.com, for example, and self sign it. If I was to trick someone's browser to take them to my server instead of Google's when they enter https://mail.google.com in their address bar they'd get an error message saying that the connection is untrusted. This appears because the person that signed the certificate, me this case, was not trusted in the first and didn't have the authority to vouch for anyone else, as far as the web browser was concerned.
Using a certificate signed for one hostname, in your case localhost, on a website that uses another hostname, rave-nation.com, is warning the visitors that this server is claiming to be someone it is not.