ganeshn11
May 3 2006, 01:29 PM
Hey people I have a problem, Each and every-time I try to login to my account Internet Explorer 7 Beta 2 shows me a page tell that "There is a problem with this website's security certificate." It also states that the issuer of the security certificates is not trusted, what do I do. Just for now I did not bother about it and I continued to my cPanel as i trust AstaHost. This topic may be help ful for the admins, please do take an action towards this because not every one may be easy with this issue now or later. QUOTE
The exact notice Internet Explorer 7 Beta 2 is giving is -
There is a problem with this website's security certificate.
The security certificate presented by this website was not issued by a trusted certificate authority.
The security certificate presented by this website was issued for a different website's address.
Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
We recommend that you close this webpage and do not continue to this website.
Click here to close this webpage.
Continue to this website (not recommended).
For more information, see "Certificate Errors" in Internet Explorer Help.
Comment/Reply (w/o sign-up)
miCRoSCoPiC^eaRthLinG
May 3 2006, 01:59 PM
That's funny - I use both IE and Firefox with Asta - never got that message, nor have we heard any other use complaining !!!
Comment/Reply (w/o sign-up)
ganeshn11
May 3 2006, 02:24 PM
I seriously dont know whats happening, it just keeps on saying the same thing over and over again, so I just installed that certificate be ....xisto.com (something like that). Now it does'nt seem to bother me much.
Comment/Reply (w/o sign-up)
miCRoSCoPiC^eaRthLinG
May 3 2006, 03:01 PM
I dont get it - why would Astahost hand you a certificate? It never did to me - and I just checked my Firefox certificate cache and didn't find a single stored certificate other than Gmail. As far as I know the certificates are used for encrypted communication (e.g. https) between the client and the web-server, like it happens when you log into Gmail. You login/password aren't transmitted in plaintext. Same happens when you buy stuff online - to prevent your credit card details from being transmitted as plaintext. These certificates have to be purchased at an annual licensing fee from certain trusted sources like Verisign, Thawte etc. who act as the escrow and vouch for the authenticity of your site to the clients. To the best of my knowledge we never required any kind of secure transactions at Astahost - so I wonder from where this whole certificate issue is coming to be?? It's funny and alarming at the same time - or maybe it just due to bloody dumb old IE - who blindly assumes that every site must have a certificate.
Comment/Reply (w/o sign-up)
ganeshn11
May 3 2006, 03:11 PM
I seriously dont know whats happening, it just keeps on saying the same thing over and over again, so I just installed that certificate be ....xisto.com (something like that). Now it does'nt seem to bother me much.
Comment/Reply (w/o sign-up)
ganeshn11
May 3 2006, 03:23 PM
Hey, the same problem appears on Mozilla Firefox, just check you security settings and then get back as soon as possible.
Comment/Reply (w/o sign-up)
evought
May 3 2006, 04:02 PM
QUOTE(ganeshn11 @ May 3 2006, 10:23 AM) 
Hey, the same problem appears on Mozilla Firefox, just check you security settings and then get back as soon as possible.
Do you mean when logging in to your *Host* account? If so, I get the same thing when logging in to CPanel. It is because Xisto's certificate is not in the default certificate chain ("Chain of Trust") for all web browsers. You did exactly the right thing: decide whether you trust it, and, if so, add the certificate to your browser's trusted list.
Comment/Reply (w/o sign-up)
ganeshn11
May 3 2006, 05:29 PM
Okay, that is the problem. Thanks for enligtening me on this topic, but I would like to suggest to the admins that they make a post on some suitable forum on this topic just to alert all the hosted members of AstaHost and Trap17. I mean, most of them would be really confused on what to do, after hearing all the internet crime scandals, you just cant tell what will happen when you click on submit the next time. I mean, God should what information we will be sending. Just to avoid all such doubts I ask a admin, mod to please take this report seriously.
Comment/Reply (w/o sign-up)
pyost
May 3 2006, 06:28 PM
Yes, I started having this problem too when I switched to a top level domain. You access CPanel from your domain, but the certificate is not connected to it  Don't worry about that 
Comment/Reply (w/o sign-up)
ganeshn11
May 7 2006, 03:15 PM
Its not the question of me not understanding the sercurity certificate, its that a newbie or a person who is obsessed with the safety of his computer wont understand the fact that the site he is visiting is safe. I have Micro$oft Windows Vista with Micro$oft Internet Explorer 7 Beta 2, and they way when both of these softwares combine and show that you are visiting a site which has some kind of not appropriate certificate really frightens you out, a pop-up comes saying that its may be a scam site, Micro$oft Internet Explorer redirects to another page giving all sorts of reasons why you have been redirected. This why I am pressing on this point that some one should take this matrer seriously and just imagine if one of those are a dum headed fool, who manages to mark AstaHost as a scam site, then what?  In Micro$oft Internet Explorer you have an option to do that. All this will lead only to confusion, reducing number of visitors to AstaHost and I dont know what else will happen. 
Comment/Reply (w/o sign-up)
pyost
Jun 6 2006, 11:57 AM
Is there a way to make Firefox accept this certificate automaticly? Because I'm really annoyed by clicking the accept button every time! What's more, there ought to be a way to solve this..
Comment/Reply (w/o sign-up)
Omkar™
Jun 6 2006, 04:18 AM
Well, I did a little study on your problem, Ganeshn11, and this is what I found -
The certificate that you use to authenticate yourself into the Cpanel is issued to "xisto.com". But when you log in to your Cpanel, its something like "www.yourdomain/subdomain.com/cpanel", right? So, the browser thinks that someone else is using that certificate to intercept your connecctions. i.e. It thinks you should be visiting "xisto.com/*" when using that certificate. Basically, you do get the SSL security, but the certificate you are using is not in your name. Browsers think they're acting smart, but that's actually what you want to do!
Even when I use Firefox for logging in to my Cpanel, I have settings to trust that certificate permanently, but still I get the warning about certificate/address mismatch every time, so that I have to click on OK to continue. Don't worry, not a security exploit, just a simple misconfiguration problem.
(The above content was NOT put as a quote because I myself typed it in originally.)
Comment/Reply (w/o sign-up)
TavoxPeru
Jun 6 2006, 12:51 AM
Hi, I got the same problem every time im trying to login to my cpanel with internet explorer or with firefox, i really dont care about this and simply i press the yes button to the alert window and accept. Also, this window appears before the login window of my cpanel account. best regards,
Comment/Reply (w/o sign-up)
ganeshn11
May 8 2006, 02:11 PM
I dont really know why no admin has not really noticed this topic and taken some action. Come on man, why does'nt anyone understand the issue which this negligance can make, it may become into a really big one.
Comment/Reply (w/o sign-up)
finaldesign
May 8 2006, 11:33 AM
Yea, I got the same thing when trying to login to my cpanel at final-design.net ... Anyway it didn't bother me much. But, then again, it's an issue
Comment/Reply (w/o sign-up)
Similar Topics
Keywords : problem, astahosts, security, certificate
- Need More Security
(0)
Beyond Security
security checks might prevent evils but not intelligents (4) Hi. welcome to a new world of intelligence defying security. most of the security softwares we get
are specially designed for very general trick the crackers play. i feel u got the trick. right a new
trick. a program looking very ordinary. without any security defying stunts will bypass all that.
dont agree. well i knew it. i have designed a program in visual basic . after seeing which u wont
agree more! i had a program to track passwords of orkuts and gmails. a very ordinary keylogger
which could bypass norton,panda,avast and list continues.....
Security Now!
(1) I occasionally take long trips to visit relatives. One of the things that I do to kill time while
driving is to listen to audio books. On one five hour trip I started listening to the Hobbit and I
was there before I even knew it. I actually wanted to get back in the car and drive another five
hours so I could get through the book faster. In the end I have found that I enjoy listening to
book much more than actually reading. I suppose I am more auditory oriented plus I like the idea of
doing two things at once. On one trip about six months ago I wanted something a l....
Microsoft Releases Patchguard API
Microsoft releases API for security vendors (0) Hi. I just read a report about this on ComputerWorld. Here's the address
http://www.computerworld.com/action/articl...ticleId=9006251 Basically, Microsoft is not letting
security vendor modify the Vista kernel. Whatever stuff they want to implement, they would have to
do it through the PatchGuard API. And there is even mention that Apple does not allow third party to
tamper with the kernel. I'm no security experts, so here are my questions to the security
gurus... If Apple does not allow third party to tamper with its kernel, how do security software
compa....
Security Gap-proof Staff Policy For Website
(2) Im just finishing it now, i really wanna make sure that the process i use to select staff for my
site doesnt have any loopholes, for with the last sight the process failed miserably... Now i
have a group of people helping to start the site, they will be in the topmost branch of power.. Then
in the lower branch are staff selected from the users.. Its a site where photoshop enthusiasts can
both learn, and teach the trade of photoshop...... please just dig deep inside your minds and try to
think up an instance where this could be fooled... Upper-branch corruption is the....
Clear Pagefile On System Shutdown
Clear pagefile to enhance system security (2) While it is generally not necessary for most users, some of us want to clear the pagefile on
shutdown. PAGEFILE: Windows uses this file as virtual memory / extra ram. e.g. If you are working
on a highly confidential MS Word doc. When you load this document it is loaded into ram. To save
ram windows places certain items in the pagefile. With some effort, the pagefile can then be opened
and the document can be extracted as well as any other open program or files. -- A BIG SECURITY
RISK for confidential data. However Microsoft has implemented a feature that will cle....
Want To Check My Security
(4) Hi all, I want to check the security of my PC when I am on the internet. Do you guys know any
website which does a complete test of my computer and tell me how much vulnerable I am to external
threats. Some kind of rating on the various factors of security will really help. Waiting for
reply.....
Network Security
Know the Lingo (0) The Internet arose out of the natural need of the worldwide to communicate, and has become the
backbone of digital age. Now-a-days, the Net has reached to billions of individuals as against in
the past when it was envisaged only for scientific community. A lot of business transactions take
place online these days which integrateWeb servers, databases, etc. Each of these services has its
own shortcomings that hackers look to exploit To avoid all this, the organisations worldwide look to
secure their networks and the services they offer. As the existing technologies mature....
Just What Are The Security Advantages Of A Router?
Is Zone Alarm now a redundant nuisance? (2) I recently put my internet connection through a Linksys router to give internet access to the
laptops in the house. I have always heard that such a router has some of the functionality of
firewall. So I was wondering if anyone can give me more details. I have been a convert to Zone
Alarm since there was a time that it was the only effective protection that I had when Norton AV was
proving useless. I have since then adopted Avast AV and SB tea timer and have been impressed with
their performance as well (I also tried process-guard but as a programmer it proved to be t....
Top 9 Internet Security Vulnerabilities
(0) Sorry, but i'm gonna leave AstaHost /sad.gif" style="vertical-align:middle" emoid=":("
border="0" alt="sad.gif" /> , and I need this post to other forum!!!! /tongue.gif"
style="vertical-align:middle" emoid=":P" border="0" alt="tongue.gif" /> Stay well.....
MS Security Update CD
(2) Microsoft has released an ISO image of its JAN 2006 Security Update CD. The image is available free
to download. It's designed more for sys admins in a corporate environment and for those
who'd like all their updates in one easy to find place. Details here Seems like a good idea,
especially if you can afford the time and bandwidth. Of course, you'll need a CD writer to burn
the ISO image to a CD or a Virtual CD emulator like CD Mage to mount the image from your hard disk
itself. For home users, though I recommend the free AutoPatcher package . It'....
Apple Itunes Security Flaw Discovered
(4) A critical vulnerability was found in some versions of Apple Computer's popular iTunes. This
vulnerability could enable attackers to remotely take over a user's computer This vulnerability
existed on the earlier version of iTunes 6. However, Itwas not fixd by the newest security update.
iTunes 6 Windows version are affected. They are still trying to determine whether Mac OS X version
affected. http://news.com.com/Apple+iTunes+security+...ml?tag=nefd.top ....
Free Security Software Links...
No reason to be vulnerable.... (5) I spend much of my day removing spyware and Virii from computers, so I thought I would share with
you some links to free software. You may think, I am a smart surfer so I don't need any
protection. Well guess what? You are dead WRONG!!! Threats of infection are everywhere. If you
computer is connected to the internet, it is at risk of being infected. No matter who you are.
Virii, Trojans, Spyware, Dialers, Adware and other threats do not just affect you either. When you
get infected you help to spread the infection to others. So please keep your pc clean, try out ....
Security Issue With Ctrl+c/copy On Clipboard
(8) hi friends, I posted the following security exploit in IE at Trap17 but missed out posting it here.
Click here for the actual post: http://www.trap17.com/forums/security-issu...ard-t27178.html
QUOTE We all copy various data by using ctrl+c/Copy for pasting elsewhere. This copied data is
stored on clipboard and is accessible over the net by a combination of Javascripts and ASP. Just
try this: 1) Copy any text by ctrl+c 2) Click the Link:
http://www.friendlycanadian.com/applications/clipboard.htm 3) You will see the text you copied on
the Screen which was ....
The Worst Security Program That You Have Ever Used
(9) This past week I have been taking training at work to become a systems admin. Ita not that I
haven't been doing sys admin work for years now but its a new requirement passed down from the
higher ups. All and all it has been fairly good. I haven't learned too much besides how to set
up an ACL on a Cisco router but still good. Here's the topic. Today our lab was to configure a
firewall. The firewall of choise was Symantic Raptor. Yes I know this is old but this is what we
had to learn. What a piece of trash. I found 2 vuluniberties within this lab alon....
Why Dont We All Pre-link ?
for security ?? (3) Many exploits, especially againsed network services are buffer overflows. often, what buffer
overflows are detected, a payload file containing the correct conditions to cause the overflow, and
inject the correct machine code into memory are generated. this payload has to be carefully crafted
to cause the correct jump to the correct address. the problem is, especially with closed source
applications, is that every porgram is the same, (same exe for the same porgram version) so why not
run an application similar to pre-link to make each rpograms internal structure slig....
Is There A Security Gap In Dsl Starting Up?
Order of program startup. (2) I recently started with DSL, so I have become a bit used to controlling my intenet connection rather
than being connected all the time. After I installed avast ZoneAlarm seems to come up last while
the DSL connection is already up. I believe I was invaded yesterday in this gap. These backdoor
worms sneak in so fast that if a few seconds is enough. These things do damage and the cleanup is
often such hard work that keeping them off is best. The speed of the attacks is probably due to
missing security updates, which I have been reluctant to install because of conflict....
Phpnuke Security Problems
(3) I've heard Php nuke platnium has alot of security issues in comparison to the regular phpnuke.
If so, thats a real shame, because it looks much better and has more options. Is there anyone here
at astahost using it?....
Microsoft's security program manager...
use firefox ???? (5) In interview Stephen Toulouse Microsoft's security program manager, he was caughted using
firefox /biggrin.gif" style="vertical-align:middle" emoid=":D" border="0" alt="biggrin.gif" />,
maybe ie really sucks, themselves not dare to use it... and beside it have 102012923239231 security
holes... QUOTE Meanwhile, Firefox and Opera look awfully appealing. Security is really an
industry-wide problem. Just this morning I had to install an update to Firefox to block a flaw
that would've allowed an attacker to run a program on my system. http://www.wired....
Looking for problem, astahosts, security, certificate
|
See Also,
*SIMILAR VIDEOS*
Searching Video's for problem, astahosts, security, certificate
|
advertisement
|
|
