Antone else having difficulty accessing Routegadget this morning?
Just getting NET::ERR_CERT_COMMON_NAME_INVALID
Routegadget
Moderators: [nope] cartel, team nopesport
20 posts
• Page 1 of 2 • 1, 2
Re: Routegadget
Me too. I get
From the BOK RG site
Your connection is not private
Attackers might be trying to steal your information from http://www.bok.routegadget.co.uk (for example, passwords, messages or credit cards)
From the BOK RG site
- DJM
- diehard
- Posts: 979
- Joined: Sun Sep 30, 2007 8:19 pm
- Location: Wye Valley
Re: Routegadget
Yes, getting the same; if, in Firefox, you tick the boxes to say you accept the risk, it then works as usual.
I must admit that I get very annoyed with these sort of errors. I don't care if people intercept the information I'm sending to Routegadget (or similar sites), and I wish I could switch off these warnings. (Obviously, if I was making an online purcahse or accessing internet banking that would be different.)
I must admit that I get very annoyed with these sort of errors. I don't care if people intercept the information I'm sending to Routegadget (or similar sites), and I wish I could switch off these warnings. (Obviously, if I was making an online purcahse or accessing internet banking that would be different.)
- roadrunner
- addict
- Posts: 1059
- Joined: Fri Sep 02, 2005 8:30 pm
Re: Routegadget
denbydale wrote:Antone else having difficulty accessing Routegadget this morning?
Just getting NET::ERR_CERT_COMMON_NAME_INVALID
At a technical level, I think the problem is that the wildcard certificate is for "*.routegadget.co.uk", which is fine for (e.g.) bok.routegadget.co.uk, but fails for (e.g.) http://www.bok.routegadget.co.uk, which is what we're (only now?) being linked/redirected to.
</nerd> (This stuff used to be part of my job)
- ricardito
- white
- Posts: 55
- Joined: Thu Jun 28, 2018 9:04 am
- Location: Between the river and the wood
Re: Routegadget
I'm currently in an onging debate with the company that hosts Routegadget about why all of the SSL certificates disappeared this morning.
Unfortunately this is probably not going to be sorted out tonight. I can turn individual sites back on one at a time if anyone is really desperate (HH and LOK done since they had events this evening that I know about).
More information to follow tomorrow.
Unfortunately this is probably not going to be sorted out tonight. I can turn individual sites back on one at a time if anyone is really desperate (HH and LOK done since they had events this evening that I know about).
More information to follow tomorrow.
-
Simon E - green
- Posts: 344
- Joined: Sat Jul 03, 2004 10:13 pm
- Location: St Albans
Re: Routegadget
Hopefully everything is now back to normal.
Still not quite sure what happened, but at least it is now fixed.
Still not quite sure what happened, but at least it is now fixed.
-
Simon E - green
- Posts: 344
- Joined: Sat Jul 03, 2004 10:13 pm
- Location: St Albans
Re: Routegadget
I seem to be getting SSL errors again from Routegadget. Some browsers report NET::ERR_CERT_COMMON_NAME_INVALID, others SSL_ERROR_BAD_CERT_DOMAIN.
Firefox says: "Firefox does not trust this site because it uses a certificate that is not valid for www.bok.routegadget.co.uk. The certificate is only valid for the following names: *.routegadget.co.uk, routegadget.co.uk".
Firefox says: "Firefox does not trust this site because it uses a certificate that is not valid for www.bok.routegadget.co.uk. The certificate is only valid for the following names: *.routegadget.co.uk, routegadget.co.uk".
- roadrunner
- addict
- Posts: 1059
- Joined: Fri Sep 02, 2005 8:30 pm
Re: Routegadget
duplicate deleted
Last edited by DJM on Sun Aug 18, 2019 10:43 pm, edited 1 time in total.
- DJM
- diehard
- Posts: 979
- Joined: Sun Sep 30, 2007 8:19 pm
- Location: Wye Valley
Re: Routegadget
I get
"Your connection is not private
Attackers might be trying to steal your information from http://www.ngoc.routegadget.co.uk (for example, passwords, messages or credit cards). Learn more
NET::ERR_CERT_COMMON_NAME_INVALID"
using Chrome too.
"Your connection is not private
Attackers might be trying to steal your information from http://www.ngoc.routegadget.co.uk (for example, passwords, messages or credit cards). Learn more
NET::ERR_CERT_COMMON_NAME_INVALID"
using Chrome too.
- DJM
- diehard
- Posts: 979
- Joined: Sun Sep 30, 2007 8:19 pm
- Location: Wye Valley
Re: Routegadget
Hey all,
Just wanted to post to say I'm aware of this issue but there's not a huge amount I can do to fix it right now. If this is the same issue as before, it is with the TLS certificates that are provided by the hosting company - for some reason, they seem to randomly be invalidated.
I did a quick check last night to see if there was anything obviously wrong but found nothing on our end, but when I get back home this evening I will try again and talk to the hosting provider. Unfortunately, this issue is not helped by Dad being away in Botswana for 2 weeks, but I will do what I can.
Sorry for the inconvenience
James Errington
Just wanted to post to say I'm aware of this issue but there's not a huge amount I can do to fix it right now. If this is the same issue as before, it is with the TLS certificates that are provided by the hosting company - for some reason, they seem to randomly be invalidated.
I did a quick check last night to see if there was anything obviously wrong but found nothing on our end, but when I get back home this evening I will try again and talk to the hosting provider. Unfortunately, this issue is not helped by Dad being away in Botswana for 2 weeks, but I will do what I can.
Sorry for the inconvenience
James Errington
Check out The Run In for all your orienteering podcast needs https://www.stitcher.com/podcast/the-ru ... refid=stpr
Team Maprunner https://www.maprunner.co.uk/
Routegadget 2 https://www.routegadget.co.uk/#
Team Maprunner https://www.maprunner.co.uk/
Routegadget 2 https://www.routegadget.co.uk/#
- JamesE
- white
- Posts: 77
- Joined: Tue Apr 18, 2017 11:21 pm
- Location: Southampton
Re: Routegadget
Thanks, James. All the browsers seem to give a slightly different message, but the most helpful one I saw was:
I found a page that seemed to explain the issue:
So I would guess that if the site was bok.routegadget.co.uk (without the www), or http://www.routegadget.co.uk/bok, it might work.
Personally, I think we (or rather, browser designers) are getting too obsessed with privacy. For a banking site, I'd be concerned if someone might be monitoring what I sent; for something like Routegadget I couldn't care less.
This server could not prove that it is http://www.bko.routegadget.co.uk; its security certificate is from *.routegadget.co.uk.
I found a page that seemed to explain the issue:
The wildcard certificate is valid only at a single level sub-domain. You use the wildcard “*” symbol to indicate the sub-domain.
For example, if you purchase a wildcard certificate for *.example.com, you can use it in any example.com first-level subdomain such as http://www.example.com, secure.example.com or private.example.com. However, you can’t use it for http://www.secure.example.com or super.secure.example.com.
So I would guess that if the site was bok.routegadget.co.uk (without the www), or http://www.routegadget.co.uk/bok, it might work.
Personally, I think we (or rather, browser designers) are getting too obsessed with privacy. For a banking site, I'd be concerned if someone might be monitoring what I sent; for something like Routegadget I couldn't care less.
- roadrunner
- addict
- Posts: 1059
- Joined: Fri Sep 02, 2005 8:30 pm
Re: Routegadget
roadrunner wrote:I found a page that seemed to explain the issue:The wildcard certificate is valid only at a single level sub-domain. You use the wildcard “*” symbol to indicate the sub-domain.
For example, if you purchase a wildcard certificate for *.example.com, you can use it in any example.com first-level subdomain such as http://www.example.com, secure.example.com or private.example.com. However, you can’t use it for http://www.secure.example.com or super.secure.example.com.
So I would guess that if the site was bok.routegadget.co.uk (without the www), or http://www.routegadget.co.uk/bok, it might work.
Correct, it would.
Personally, I think we (or rather, browser designers) are getting too obsessed with privacy. For a banking site, I'd be concerned if someone might be monitoring what I sent; for something like Routegadget I couldn't care less.
Except that certificates aren't only about encryption; they are also about validating the site's ownership. I doubt you'd be wanting to follow a link to an unsecured site, say http://www.baarclays.co.uk, and be given no warning on the basis that it's "not a banking site" (and by the way, fraudulent site URLs can easily be made a lot harder than this to spot - and you might be surprised what links people will follow...).
- ricardito
- white
- Posts: 55
- Joined: Thu Jun 28, 2018 9:04 am
- Location: Between the river and the wood
Re: Routegadget
ricardito wrote:Except that certificates aren't only about encryption; they are also about validating the site's ownership. I doubt you'd be wanting to follow a link to an unsecured site, say http://www.baarclays.co.uk, and be given no warning on the basis that it's "not a banking site" (and by the way, fraudulent site URLs can easily be made a lot harder than this to spot - and you might be surprised what links people will follow...).
True - but if I followed a link to, say, http://www.ruotegadget.co.uk to enter my route, I really couldn't care less. I'd say that if you don't need to identify yourself with a username and password, then it doesn't really matter if it isn't secure.
- roadrunner
- addict
- Posts: 1059
- Joined: Fri Sep 02, 2005 8:30 pm
Re: Routegadget
roadrunner wrote:if I followed a link to, say, http://www.ruotegadget.co.uk to enter my route, I really couldn't care less. I'd say that if you don't need to identify yourself with a username and password, then it doesn't really matter if it isn't secure.
You wouldn't care if a fake website, with no security certificate, installed malware on your device and then captured say your banking login or credit card details?
- Snail
- diehard
- Posts: 709
- Joined: Wed Nov 30, 2005 8:37 pm
Re: Routegadget
Quick update; there is no update, hosting company still haven't fixed it yet. Will do some more shouting at them tonight after I get back from work.
To add my thoughts to this discussion, since Routegadget has a login system, browsers have somewhat forced our hand with regard to having TLS, and even if they hadn't it's still a good thing to have (until you get into this situation).
The real issue is why this has happened again, despite us thinking it had been sorted with the hosting last time.
Sorry again for the inconvenience but this really couldn't have come at a worse time.
James
To add my thoughts to this discussion, since Routegadget has a login system, browsers have somewhat forced our hand with regard to having TLS, and even if they hadn't it's still a good thing to have (until you get into this situation).
The real issue is why this has happened again, despite us thinking it had been sorted with the hosting last time.
Sorry again for the inconvenience but this really couldn't have come at a worse time.
James
Check out The Run In for all your orienteering podcast needs https://www.stitcher.com/podcast/the-ru ... refid=stpr
Team Maprunner https://www.maprunner.co.uk/
Routegadget 2 https://www.routegadget.co.uk/#
Team Maprunner https://www.maprunner.co.uk/
Routegadget 2 https://www.routegadget.co.uk/#
- JamesE
- white
- Posts: 77
- Joined: Tue Apr 18, 2017 11:21 pm
- Location: Southampton
20 posts
• Page 1 of 2 • 1, 2
Who is online
Users browsing this forum: No registered users and 24 guests