Loading...
> >

Website Security Certificate

none01ohonenone01ohone Posts: 862
edited May 2014 in The Commons

I got these messages earlier while trying to log in to Daz with Firefox and Explorer.
Never had them before?

IE.jpg
801 x 396 - 88K
Firefox.jpg
709 x 515 - 195K
Post edited by none01ohone on

Comments

  • Richard HaseltineRichard Haseltine Posts: 100,772
    edited December 1969

    We've had a few isolated reports like that since DAZ updated its certificate as a precaution after the heartbleed issue - DAZ wasn't directly affected by that, and CloudFlare had already updated when it was revealed. I've logged on in both IE and FF this morning so I suspect that the issue is transient and a false alarm affecting only certain users or situations.

  • ChoholeChohole Posts: 33,604
    edited December 1969

    This was the statement form DAZ 3D when this first happened

    DAZ_Jon said:
    Daz3D was always safe. We use a version of OpenSSL that wasn't affected by the heartbleed bug. The CDN we use, Cloudflare was fixed a week before the vulnerability was made public.

    There are some sites that are checking if it is vulnerable or not and still say that daz3d.com isn't safe because they are just checking to see if we are running OpenSSL, not any other checks such as version or attempting to trigger the bug, and are essentially reporting numerous false positives that would show that 65% of the entire internet isn't safe. So, needless to say, the websites that check based off that are safe to ignore. We did update our SSL cert just as a precaution and to give peace of mind to our customers, even though, at no time, was Daz3D vulnerable to the bug.

  • robkelkrobkelk Posts: 3,259
    edited May 2014

    none01ohone said:
    I got these messages earlier while trying to log in to Daz with Firefox and Explorer.
    Never had them before?
    It's a side-effect of pages being presented from Cloudflare instead of DAZ3D - we never saw it before because SSL worked differently before the Heartbleed patches. We'll keep seeing it as long as Daz uses Cloudflare; IN THIS PARTICULAR CASE ONLY, consider it to be a sign that you're getting a page from the proxy instead of the main site.
    Post edited by robkelk on
  • WendyLuvsCatzWendyLuvsCatz Posts: 38,202
    edited December 1969

    I get a similar message on android
    but
    I also get it on facebook and paying my landline on Telstra's homepage
    facebook alarmed me when I first got my android then I found I got it on Optus too!
    My android was with with Optus! (is now just wifi pulled the SIM when out of contract)
    so realized not anything important
    people on forums embedding soundcloud etc do it too.

  • none01ohonenone01ohone Posts: 862
    edited December 1969

    Thanks for the reply's. I thought it was related to cloudflare, just needed verification.

Sign In or Register to comment.