TLS Certificate Expired

Yup - sorry for the issue - it's usually a quick fix, but my normal solution didn't take - server guys are on the case.

We are safe - despite the warnings.  Hopefully this will be resolved momentarily.

We ran into some more issues - sorry for the down time.

OMG, i thought it was something I said!

mtierney said:

OMG, i thought it was something I said!

I thought I broke something in our house move! 

Am forever grateful for all the quiet background work done here - thank you, Jamie & crew!

I was thinking we got hacked by the Russians…. I repented for all my sins …and I will henceforth refer to “Pablo” as Juan Pablo.

Why are some of our avatars showing and not others?  Could that be a clue?

joan_crystal said:

Why are some of our avatars showing and not others?  Could that be a clue?

yeah - there's 2 content drives set up - so some that were uploaded awhile ago are fine - newer uploads are not.  We'll figure it out - just not sure if I'll figure it out before my programmers are back on Monday.

For those of us that are clueless (moi), what is a TLS certificate and why is it important?

What are TLS/SSL certificates?

Transport Layer Security (TLS) certificates—most commonly known as SSL, or digital certificates—are the foundation of a safe and secure internet. TLS/SSL certificates secure internet connections by encrypting data sent between your browser, the website you’re visiting, and the website server. They ensure that data is transmitted privately and without modifications, loss or theft.

This is the message that was popping up. I know we have some fake people on this site…. But this sounded a bit scary…

This Connection Is Not

Private

This website may be impersonating

"maplewood.worldwebs.com" to steal your personal or financial information.

You should go back to the previous page.

Show Details

Go Back

Jaytee said:

This is the message that was popping up. I know we have some fake people on this site…. But this sounded a bit scary…

This Connection Is Not

Private

This website may be impersonating

"maplewood.worldwebs.com" to steal your personal or financial information.

You should go back to the previous page.

Show Details

Go Back

Our server would like to do an impersonation now:

Back when the internet was young and naive, everyone talked freely and openly. Browsers talked to servers, servers, talked to browsers, servers talked to servers.

Browser: Hey maplewood.worldwebs.com, can I please have page /forums ?

Server: Sure, here you go!

Sometimes browsers talked to banks:

Browser: Hey mybank.com, can I please see /account ?

Malicious server: Hey browser! I'm mybank.com. Here's  /account. Just type in your username and password here!

Not a great situation. So a bit sadder, poorer, and wiser, now it's more like:

Browser: Hey mybank.com, {encrypted request}

Server: Hey browser, {encrypted response}

Browser: Wait, before we go on, how do I know you're really mybank.com?

Server: Here's my certificate I'm who I claim to be, which you can use the power of math and a chain of trust to verify!

Browser: Great!

Part of the security of certificates is having them have expiration dates, needing regular getting of new certificates. So then you can get this:

Browser: Show me your certificate.

Server: Here you go

Browser: Hmm, looks valid, except that it expired yesterday, so it's actually not valid. Maybe it's an honest mistake, or maybe you're not who you say you are.

For MOL, it's almost certainly fine to proceed anyway. And part of why I posted the message here is to just double check, and make it visible that this is what was going on. But if your email or bank or any other critical website ever has this issue, definitely don't proceed anyway.