Secure Connection

[whole diary]

[Surrey 455]

I've been getting this message a few times recently when I go to my saved bookmark https://www.firstgreatwestern.info/coffeeshop/index.php?action=unread

Anything to be worried about? If I simply refresh the page it loads but sometimes shows no unread topics even though its been 24 hours or more since I last visited the site.

[grahame]

I've been getting this message a few times recently when I go to my saved bookmark https://www.firstgreatwestern.info/coffeeshop/index.php?action=unread

Anything to be worried about? If I simply refresh the page it loads but sometimes shows no unread topics even though its been 24 hours or more since I last visited the site.

I take all reports of security issues very seriously. Looking further into this right now away.

My initial educated guess, based on the evidence you have provided, was that there is possibly a link somewhere that I missed in updating last December and / or Chrome has updated and / or one or more certificates have expired.   Analysis suggests the latter two; our certificates have limited life and some have expired. I have just renewed a couple of the key ones - see if that works for the message (it will probably not fix the unread topics not being properly reported)

I am not worried, but I am very interested.   Whilst we look to make all transactions though https these days,  it's still less than 6 months we've being doing so and - you may recall - the main reason we did so was as a re-assurance; the Coffee Shop does not collect payments or personal data which needed that extra layer. Still worth having the layer but no panic needed.

I will be very interested in feedback from other members to help me analyse and gain more evidence - either a pattern of problems or a deathening silence which would suggest it's cured or a very specific issue.
 

[grahame]

Further analysis suggests certificate issues with changes made elsewhere ... I think I have fixed them for the Coffee Shop but you may still get some offputting reports - if so after about 8 a.m. please let me know.   My first "cure" test made in worse (more frightening) rather than better and for an hour or so that may have been cached!

[stuving]

Further analysis suggests certificate issues with changes made elsewhere ... I think I have fixed them for the Coffee Shop but you may still get some offputting reports - if so after about 8 a.m. please let me know.   My first "cure" test made in worse (more frightening) rather than better and for an hour or so that may have been cached!

I've been getting frequent bleats (last one on Sunday) from Bitdefender saying:

firefox.exe attempted to establish a connection relying on an untrusted certificate to www.wellho.net. We blocked the connection to keep your data safe since untrusted certificates are issued by unrecognized Certificate Authorities.

I assumed that was a link somewhere in a forum page. But those are quite common from all sorts of sites, sometimes just a one-off until a minder gets a reminder, or sometimes persistently.

[grahame]

I've been getting frequent bleats (last one on Sunday) from Bitdefender saying:

firefox.exe attempted to establish a connection relying on an untrusted certificate to www.wellho.net. We blocked the connection to keep your data safe since untrusted certificates are issued by unrecognized Certificate Authorities.

I assumed that was a link somewhere in a forum page. But those are quite common from all sorts of sites, sometimes just a one-off until a minder gets a reminder, or sometimes persistently.

Yes "wellho.net" is on an old / (not and probably won't be https) server. I am now using "wellho.info" for images and as I hit the images in my old threads I am updating the links.

[Surrey 455]

I've been getting this message a few times recently when I go to my saved bookmark https://www.firstgreatwestern.info/coffeeshop/index.php?action=unread

Anything to be worried about? If I simply refresh the page it loads but sometimes shows no unread topics even though its been 24 hours or more since I last visited the site.

I just got the same message again. 

[grahame]

I just got the same message again. 

OK ... I have just looked at the server and it seems heavily overloaded ... looks like a (distributed) denial of service which probably means that certain things get blocked.   I have add some locations to my "naught boy" list and expect the issues to be reduced at least.  Watching ...

[grahame]

Watching ...

Naughty boys may be throwing stones ... but ineffective now, and the server is recovering.

References to "Naughty boys" should of course - for political correctness - be to "Naughty People".

[grahame]

I just got the same message again. 

OK ... I have just looked at the server and it seems heavily overloaded ... looks like a (distributed) denial of service which probably means that certain things get blocked.   I have add some locations to my "naught boy" list and expect the issues to be reduced at least.  Watching ...

Requests to the backroom server have doubled in the past few days ... but looks like me tweaks last night have reduced the load somwhat.  Hard to tell on a Friday morning before dawn as this is the time that the big site back up happens and it makes intensive cpu use as it compresses all the stuff - ongoing as I write.