Dismiss Notice
Join Physics Forums Today!
The friendliest, high quality science and math community on the planet! Everyone who loves science is here!

Certificate warning in Chrome

  1. Oct 15, 2014 #1

    Jonathan Scott

    User Avatar
    Gold Member

    Chrome is giving the following warning:

    The identity of this website has been verified by RapidSSL CA but it does not have public audit records.

    The site is using outdated security settings that may prevent future versions of Chrome from being able to safely access it.
     
  2. jcsd
  3. Oct 15, 2014 #2
    How is that message being presented? I am using the latest Chrome and only see that text if I click the lock in the address bar and go to the connection tab.
     
  4. Oct 15, 2014 #3

    Jonathan Scott

    User Avatar
    Gold Member

    The triangle warning sign comes up on the lock in the address bar, and if I click on it to see what the problem is, I see that message.
     
  5. Oct 15, 2014 #4

    Jonathan Scott

    User Avatar
    Gold Member

    I'm using the dev level of Chrome, which seems to have recently updated itself: 40.0.2188.2 dev-m
     
  6. Oct 15, 2014 #5
    Interesting. I'm using 38 at the moment. Do you see such an error using any other browser?
     
  7. Oct 15, 2014 #6

    Doug Huffman

    User Avatar
    Gold Member

    No warning here, with FF 32.0.2 Read the certificate file, all looks good.
     
  8. Oct 15, 2014 #7
    Thanks Doug. It could be a bug in the Chrome dev release. When 40 goes to release then we can try to diagnose if the warning appears.
     
  9. Oct 15, 2014 #8

    Jonathan Scott

    User Avatar
    Gold Member

    I don't see any problem in Firefox, Opera or Safari. I think I saw some recent news item that said someone had recently demonstrated that it was possible to fake a certificate chain and that something was being tightened up in Chrome to prevent that, so it might be something to do with that. Apart from that, it could of course be a Chrome bug. I use the dev version on my personal laptop to try to get some advance warning of what they will break next in the stable version!
     
  10. Oct 15, 2014 #9

    Jonathan Scott

    User Avatar
    Gold Member

    I've found the description of the change in the Chrome issues: https://code.google.com/p/chromium/issues/detail?id=401365

    The title is "Deprecate SHA-1 for certificates".

    I haven't fully understood it, but I think they are trying to move people off SHA-1 signing of certificates because it has been demonstrated that it can be faked, and that matches the recent news item.
     
  11. Oct 15, 2014 #10

    TumblingDice

    User Avatar
    Gold Member

    It's definitely a move by Google with Chrome. I received notices from Symantec for my sites at the beginning of September:

    "We would like to inform you of Google's intent to phase out support for certificates using a SHA-1 hashing algorithm via degraded visual indicators and warnings in the Chrome™ browser. These changes are expected to take effect in the production version of Chrome version 39 in November 2014."

    Acquiring the SSH-2 update certificates from Symantec was easy. Plan to install at Hostgator next week.

    (Last month I had to diagnose a PDF issue with Chrome and found that Google had replaced Adobe PDF support with their own. Had to contact almost a dozen reps in the field because Chrome couldn't accept a date with a year earlier than 1969!)
     
  12. Oct 15, 2014 #11
    Thanks TD, looks like I need to get a new certificate already. What a PITA.
     
  13. Oct 15, 2014 #12

    TumblingDice

    User Avatar
    Gold Member

    FWIW, Symantec provided the SHA-2 update certs for free and provided an easy website process to acquire. Hope you're experience goes as well or better.
     
  14. Oct 21, 2014 #13
    I'm updating to SHA-2. There may be some certificate warnings while I'm doing this.
     
  15. Oct 21, 2014 #14
    @Jonathan Scott do you still get the warning? The connection should be SHA-2 now.
     
  16. Oct 21, 2014 #15

    TumblingDice

    User Avatar
    Gold Member

    Lookin' good, Greg!

    pf-cert.png
     
  17. Oct 21, 2014 #16

    Jonathan Scott

    User Avatar
    Gold Member

    Warning triangle has gone, thanks.
     
Know someone interested in this topic? Share this thread via Reddit, Google+, Twitter, or Facebook




Similar Discussions: Certificate warning in Chrome
  1. Warnings (Replies: 21)

  2. Warnings (Replies: 1)

  3. Warning? (Replies: 7)

  4. Slow on Google Chrome (Replies: 3)

  5. Chrome problems (Replies: 7)

Loading...