Straight Dope: Site Not Secure, Invalid Certificate, Expired Certificate

Is this some kind of bust, or what?

Someone flushed the incriminating evidence.

Nice beaver!

I’ve contacted Sun-Times management to let them know about this issue.

(Sorry I didn’t see this earlier, I was playing a Christmas concert this evening. 'Tis the season and all that.)

Hoping for a quick resolution to this problem.

Jenny
your humble TubaDiva
Administrator

It’s already fixed.

All right then!

Jenny
your humble TubaDiva
Administrator

If you were asking me, umm, no it wasn’t.

Now I’m left to wonder how it got fixed. If Tuba didn’t contact anyone, how did whoever needed to renew/replace the certificate find out? Are there some tech elves in the background who don’t have an account?

Or was the problem actually on the issuer’s side, and the certificate renewal had been paid for, but they forgot to actually renew it? I note the issuer path looks different now, with 5 nodes instead of 3.

If it’s already fixed, why does Chrome still say “Site Not Secure” for me? I don’t get the big scary warning page, but all SDMB still goes to “http” rather than “https”. That is, the URLs still properly say “https” but they all automatically redirect to “http”.

What’s the case against HTTPS?

None really, especially after July of this year as chrome now properly marks all HTTP sites as “not secure”.

I would be that several users on here use the same password on this site on other more critical websites. HTTP means you are broadcasting this password to anyone who cares to look.

Further up in the thread (post #8 at 6:29 pm) Bone said that he had emailed the tech people.

Tuba didn’t show up until 9:21 pm.

OK, this seems to have fixed itself on my end.

Several references to Airplane! but none to the most natural one?

This certificate is no more! It has ceased to be! It’s expired and gone to meet its maker! … THIS IS AN EX-CERTIFICATE!

Well, I’d better replace it, then.

Sorry for the inconvenience; it was in process earlier in the day on Thursday and was thought handled. Not sure what transpired but then it wasn’t and now it is for sure and the system reset.

We should be good to go now.

Jenny
your humble TubaDiva
Administrator

Mine wasn’t an Airplane ref. :wink:

Get off my Lawn.

Oh, you mean apart from that? I work with small HTTP systems. Moving to HTTPS means moving to a processor that costs 10 times as much, with 100 times as much memory. Out of which we get worthless security and still require a VPN, because actual security would require even more memory, more development costs, and would still be unfit for purpose. It means old web browsers don’t work, which means that old operating systems don’t work. It means that caching doesn’t work. These are trivial objections, but it means that the whole ecosystem, which was working perfectly well, has to be discarded. It’s like being told that your 30 year old car, that you’ve lovingly maintained by hand, has to be discarded because you can’t get replacement windshield wipers anymore.

It’s particularly galling because it’s being driven by the big advertising and data mining companies.

Neither was his. :smiley:

It also just adds extra complexity, meaning another thing that can go wrong, just like it did here. It makes sense that you want that for higher security sites, and can make at least some sense on any site with a login. But there are still purely passive, information only sites out there that would work fine on HTTP.

The big thing that made me aware was trying what is mentioned in this xkcd comic. I got an older Kindle that still uses cellular data. But it can’t handle HTTPS. So no Wikipedia for me–not even in read-only mode. I could at least read the Dope, but that’s gone now, too. (I did at least eventually find a few years old dump of Wikipedia available on HTTP, but the URL is annoying long.)

I have noticed old browsers not being able to connect not because they don’t have HTTPS, but because they use an older, less secure form. That context doesn’t bother me as much, since you can usually upgrade to a better browser–for now. But when it’s a device, it kinda sucks.

I know