Certificate out of date?

[stickygirl]

Got a message from Opera browser just now telling me the site's certificate was out of date leaving me open to all kinds of awful things. I updated Opera, retried and got the same message.
Sup?

 

[stickygirl]

"Your connection is not private
Attackers might be trying to steal your information from forum.literotica.com (for example, passwords, messages, or credit cards).

NET::ERR_CERT_DATE_INVALID"

 

[stickygirl]

Check my side of things but then Safari came up with this

DST Root CA X3
Expired: Thursday 30 September 2021 at 15:01:15 BST
This certificate has expired
Digital Signature Trust Co.

Can someone put a dollar in the meter?

 

[stickygirl]

Checked my side of things but then Safari came up with this

DST Root CA X3
Expired: Thursday 30 September 2021 at 15:01:15 BST
This certificate has expired
Digital Signature Trust Co.

Can someone put a dollar in the meter?

 

[Manu]

Sorry about the issue.

This is a planned update by Lets Encrypt, as explained here:

https://twitter.com/letsencrypt/status/1443621997288767491

Depending on how many Lit users this is impacting, we considering possibly changing our SSL certificates temporarily to allow users on older devices more time to update.

Can some of you post screenshots and URLs so I can better understand where you're having these issues?

Thank you.

 

[stickygirl]

Cheers Manu. I had a notification at work that a security company that issues SSL certs had screwed up the way they did their renewal and people have been patching things up since.

I hope older browser versions can still access without those constant security nags. I've got an "ancient" 10 yr old Mac running 10.11 so that's the best I've got.

I had a similar warning popped up on my iphone SE running 14.7.1 that has settled down after throwing me some warnings yesterday. The stories section works fine too.

Opera couldn't render the stories section properly yesterday, but now looks okay again. Same with Safari = all good.

Phew!

 

[stickygirl]

Cheers Manu. I had a notification at work that a security company that issues SSL certs had screwed up the way they did their renewal and people have been patching things up since.

I hope older browser versions can still access without those constant security nags. I've got an "ancient" 10 yr old Mac running 10.11 so that's the best I've got.

I had a similar warning popped up on my iphone SE running 14.7.1 that has settled down after throwing me some warnings yesterday. The stories section works fine too.

Opera couldn't render the stories section properly yesterday, but now looks okay again. Same with Safari = all good.

Phew!

I have noticed the Edit link has disappeared from the bulletin boards. Maybe I'm being stupid but I thought there was an icon/link

 

[stickygirl]

Cheers Manu. I had a notification at work that a security company that issues SSL certs had screwed up the way they did their renewal and people have been patching things up since.

I hope older browser versions can still access without those constant security nags. I've got an "ancient" 10 yr old Mac running 10.11 so that's the best I've got.

I had a similar warning popped up on my iphone SE running 14.7.1 that has settled down after throwing me some warnings yesterday. The stories section works fine too.

Opera couldn't render the stories section properly yesterday, but now looks okay again. Same with Safari = all good.

Phew!

I have noticed the Edit link for one's own posts has disappeared from the bulletin boards. Maybe I'm being stupid but I thought there was an icon/link

 

[stickygirl]

Sorry about the issue.

This is a planned update by Lets Encrypt, as explained here:

https://twitter.com/letsencrypt/status/1443621997288767491

Depending on how many Lit users this is impacting, we considering possibly changing our SSL certificates temporarily to allow users on older devices more time to update.

Can some of you post screenshots and URLs so I can better understand where you're having these issues?

Thank you.

Just going to try replying to this because

https://64.media.tumblr.com/3e4a23752e51053ab26f9ce13388b889/3d83a6938628c292-56/s640x960/49c21b9a9f844d9dcccb09bfda97e5b191e6c007.png

... still doing it when I go to reply to a post in a thread

 

[stickygirl]

Sorry about the issue.

This is a planned update by Lets Encrypt, as explained here:

https://twitter.com/letsencrypt/status/1443621997288767491

Depending on how many Lit users this is impacting, we considering possibly changing our SSL certificates temporarily to allow users on older devices more time to update.

Can some of you post screenshots and URLs so I can better understand where you're having these issues?

Thank you.

Just going to try replying to this because

https://64.media.tumblr.com/3e4a23752e51053ab26f9ce13388b889/3d83a6938628c292-56/s640x960/49c21b9a9f844d9dcccb09bfda97e5b191e6c007.png

... still doing it when I go to reply to a post in a thread... but not that time. Weird huh?

 

[Manu]

Just going to try replying to this because

https://64.media.tumblr.com/3e4a23752e51053ab26f9ce13388b889/3d83a6938628c292-56/s640x960/49c21b9a9f844d9dcccb09bfda97e5b191e6c007.png

... still doing it when I go to reply to a post in a thread... but not that time. Weird huh?

Thank you for the info. This is definitely an issue with Lets Encrypt.

We updated certificates on many parts of the site, but not on all of them yet since we have a lot.

It looks like you can fix it on your Mac by using these steps:
https://mjtsai.com/blog/2021/09/24/...ng-with-el-capitan-and-older/#comment-3538503

We plan to keep updating the various SSL certificates, but some might go after the weekend.

Thank you again.

 

[stickygirl]

Oooerr. A bit out of my pay grade but thanks for the link. Hopefully the situation will resolve itself in a few days

 

[stickygirl]

I put my big girl pants on and took that download and it works so far on the browsers I use. The poster cites *do not trust me so check the fingerprint* and it checked out on two of the independent links but not Apple's one. I'll try to figure that out next. I would update my hardware but then I'll lose use of virtually all my software. I understand why they do that - to push sales, but in the end I'll probably abandon Apple and go PC because it's so much cheaper. Fuck em.

Anyways many thanks for the links Manu x

 

[Magineer]

This is dwarfed by the huge numbers of people who never liked Windows 10 and are still using 7. They are now being impacted by this big time... and on things like Chrome. I suspect access will be increasingly denied to a lot of Lit. members unless you do something about it.

Tech companies seem to want to absolve themselves and their products of something which all other manufacturers have to abide by - 'fit for purpose' or 'it does what it says on the tin'. They want the freedom to 'discontinue support' as and when they think that suits their bottom line.

 

[stickygirl]

This is dwarfed by the huge numbers of people who never liked Windows 10 and are still using 7. They are now being impacted by this big time... and on things like Chrome. I suspect access will be increasingly denied to a lot of Lit. members unless you do something about it.

Tech companies seem to want to absolve themselves and their products of something which all other manufacturers have to abide by - 'fit for purpose' or 'it does what it says on the tin'. They want the freedom to 'discontinue support' as and when they think that suits their bottom line.

You're right - it is more of the same by the manufacturers who have us by the curlies. The problem for any site, not just Lit, is that the certificating bodies provide a SSL cert that sits in your PC/Mac' security folder. Every time you visit a site the browser checks if the site's certificate matches the list in your security folder before it goes any further.

If it isn't provided by Apple or Microsoft as a regular update you're stuffed, except in this case I could install the certificate manually.

I blame Russian teenagers and hackers generally for constantly chipping away at security because there's big bucks for them if they managed to get around browser security and steal your passwords.

I'd update my Mac to a later version but then most of my ten year old software won't work and I'll have to rent it.

 

[Magineer]

The whole thing amounts to little less than a scandal.

I guess buried somewhere in the small print is some legal disclaimer to the effect that they can, in effect, sabotage the product they've sold you at any time to suit themselves and their shareholders.

It would be interesting to see that actually tested in court. Class action..?