+ Reply to Thread
Page 1 of 3 123 LastLast
Results 1 to 10 of 23

Thread: Security certificate, using https: - seems to be invalid and old.

  1. #1
    Join Date: Aug 2013

    Location: London

    Posts: 1,500
    I'm Sam.

    Default Security certificate, using https: - seems to be invalid and old.

    For some reason I encountered this problem today - I normally let autocomplete choose the url for art of sound so perhaps has never before tried to used https:

    When doing so I get this info:

    Your connection is not secure

    The owner of www.theartofsound.net has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.
    And from the Advanced tab:

    www.theartofsound.net uses an invalid security certificate.

    The certificate is not trusted because it is self-signed. The certificate is only valid for Parallels Panel The certificate expired on 25 July 2015 12:21. The current time is 10 April 2016 21:51.

    Error code: SEC_ERROR_UNKNOWN_ISSUER
    Do you have a security certificate for Art of Sound?

  2. #2
    Join Date: Feb 2013

    Location: W Lothian

    Posts: 37,780
    I'm Grant.

    Default

    I am using Firefox at moment through linux, and have not encountered that.
    Regards,
    Grant ....

    I've said it before and I'll say it again: democracy simply-doesn't-work
    .... ..... ...... ...... ................... ..... ..... ..... ..... .....
    DENON DV2900 - TWIN PRO MONOBLOCK AMPLIFIERS - XIANG SHENG DAC\PRE\HEADPHONE AMP - AVANTREE OASIS CLASS 1 BLUETOOTH - AUDIO TECHNICA ATH-MSR7 & OPPO PM-3 PLANAR HEADPHONES - WIN10 JRIVER23, SPOTIFY PREMIUM - ECHO DOT - SMSL M6 MINIDAC - FULL RANGE TWIN TELEFUNKEN's - Q ACOUSTIC BT3 actives - CANTON SUB - MAINS REGENERATED AND FILTERED.

  3. #3
    Join Date: Jan 2009

    Location: Essex

    Posts: 16,296
    I'm openingabottleofwine.

    Default

    Nor I, using bog-standard Internet Explorer. Perhaps Nick (Beechwoods) will be able to advise.
    Have you listened to this month's choice in the Album Club?

    Barry

  4. #4
    Join Date: Feb 2008

    Location: Down South

    Posts: 2,224
    I'm Neal.

    Default

    Why are you using HTTPS?

    If I try that using Safari on an Ipad I get a similar message using Details from the pop up that appears.
    Listening in a Foo free Zone...

    Only a Sith deals in absolutes.

  5. #5
    Join Date: Aug 2013

    Location: London

    Posts: 1,500
    I'm Sam.

    Default

    Quote Originally Posted by NRG View Post
    Why are you using HTTPS?

    If I try that using Safari on an Ipad I get a similar message using Details from the pop up that appears.
    I'm not in general - see my original post for the explaination. But now that I've discovered that problem with the security certificate, I'm pointing it out so people know and can correct it.

    But using https and making https the default for ANY site (as many websites do) helps protect users from such things as identity theft on the site. I don't necessarily consider that to be a big problem for AoS but it is a reason for it. To deliberately NOT choose https for AoS if I were practicing good cyber security could leave me vulnerable by me forgetting to change settings back to https after using AoS. Many people use https add-ons to ensure they're using https where they can - I guess you'd then have to add an exception for AoS.

    Here's an article as to why one should use https: all the time: http://mashable.com/2011/05/31/https.../#qkSV10czgsqa

  6. #6
    Join Date: Jan 2008

    Location: Wrexham, North Wales, UK

    Posts: 73,240
    I'm AudioAl'sArbiterForPISHANTO.

    Default

    Quote Originally Posted by Audio Advent View Post
    For some reason I encountered this problem today - I normally let autocomplete choose the url for art of sound so perhaps has never before tried to used https:

    When doing so I get this info:



    And from the Advanced tab:



    Do you have a security certificate for Art of Sound?
    Hi Sam,

    I haven't got the slightest clue what's happening there, or what a "security certificate" is or what it relates to. I don't really deal with the technical side of things here, so will alert my fellow member of admin Nick (Beechwoods), who does, and ask him to comment and hopefully clarify the matter for you

    Marco.
    http://www.thestainedglasscompany.com

    "A man is a success if he gets up in the morning and gets to bed at night, and in between he does what he wants to do" -- Milan Kundera.

  7. #7
    Join Date: Feb 2013

    Location: W Lothian

    Posts: 37,780
    I'm Grant.

    Default

    The cert apparently ran out in Sept. or that was the message I got via an https request just a short while ago. not really a major problem but if thats the case then sure Nick will know why. I never have bothered with the https stuff especia;ly.
    Regards,
    Grant ....

    I've said it before and I'll say it again: democracy simply-doesn't-work
    .... ..... ...... ...... ................... ..... ..... ..... ..... .....
    DENON DV2900 - TWIN PRO MONOBLOCK AMPLIFIERS - XIANG SHENG DAC\PRE\HEADPHONE AMP - AVANTREE OASIS CLASS 1 BLUETOOTH - AUDIO TECHNICA ATH-MSR7 & OPPO PM-3 PLANAR HEADPHONES - WIN10 JRIVER23, SPOTIFY PREMIUM - ECHO DOT - SMSL M6 MINIDAC - FULL RANGE TWIN TELEFUNKEN's - Q ACOUSTIC BT3 actives - CANTON SUB - MAINS REGENERATED AND FILTERED.

  8. #8
    Join Date: Feb 2008

    Location: Down South

    Posts: 2,224
    I'm Neal.

    Default

    Quote Originally Posted by Audio Advent View Post
    I'm not in general - see my original post for the explaination. But now that I've discovered that problem with the security certificate, I'm pointing it out so people know and can correct it.

    But using https and making https the default for ANY site (as many websites do) helps protect users from such things as identity theft on the site. I don't necessarily consider that to be a big problem for AoS but it is a reason for it. To deliberately NOT choose https for AoS if I were practicing good cyber security could leave me vulnerable by me forgetting to change settings back to https after using AoS. Many people use https add-ons to ensure they're using https where they can - I guess you'd then have to add an exception for AoS.

    Here's an article as to why one should use https: all the time: http://mashable.com/2011/05/31/https.../#qkSV10czgsqa
    I understand but am intrigued as to what sensitive personal data you are sharing with theartofsound.net.... a HiFi discussion forum. You can browse Amazon and not need the connection to be encrypted but as soon as you log in then the connection is encrypted, naturally as your CC details, full name and address are available, but a HiFi forum? There are articles saying the opposite as well, encrypting every connection is not realistic and essentially unnecessary.
    Listening in a Foo free Zone...

    Only a Sith deals in absolutes.

  9. #9
    Join Date: Jan 2008

    Location: Wrexham, North Wales, UK

    Posts: 73,240
    I'm AudioAl'sArbiterForPISHANTO.

    Default

    Quote Originally Posted by struth View Post
    The cert apparently ran out in Sept. or that was the message I got via an https request just a short while ago. not really a major problem but if thats the case then sure Nick will know why. I never have bothered with the https stuff especia;ly.
    No worries, but I've no idea what the certificate is for or why it (apparently) has run out. I didn't even know we had one in the first place! Anyway, rest assured that if something needs attending to, it will be ASAP.

    As for the techy/computer geekery Sam was referring to, it's all Double-Dutch to me, so I've no idea what he is getting at.

    Marco.
    http://www.thestainedglasscompany.com

    "A man is a success if he gets up in the morning and gets to bed at night, and in between he does what he wants to do" -- Milan Kundera.

  10. #10
    Join Date: Aug 2013

    Location: London

    Posts: 1,500
    I'm Sam.

    Default

    Quote Originally Posted by NRG View Post
    I understand but am intrigued as to what sensitive personal data you are sharing with theartofsound.net.... a HiFi discussion forum. You can browse Amazon and not need the connection to be encrypted but as soon as you log in then the connection is encrypted, naturally as your CC details, full name and address are available, but a HiFi forum? There are articles saying the opposite as well, encrypting every connection is not realistic and essentially unnecessary.
    Who says I am? I'm not saying I am. My original post says that I found out by accident - normally I type two letters of the url and autocomplete in my browser brings up artofsound.net in plain old http.

    This one time I used https accidentally - it was suggested for me but not as per the usual autocomplete - and it comes up with this. So I came here to let people know, community and all that.

    But all the same in general, even if it is unnecessary in some cases, it is generally better practice to get into the habbit of using https so that when it IS worthwhile you do it out of habbit and take not when a site is not secure - e.g. you might pass financial details over PM on here whilst in some dodgy internet cafe.

+ Reply to Thread
Page 1 of 3 123 LastLast



 

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •