If you like DNray Forum, you can support it by - BTC: bc1qppjcl3c2cyjazy6lepmrv3fh6ke9mxs7zpfky0 , TRC20 and more...

 

SSL certificate problem

Started by dragon, Jul 04, 2022, 12:42 AM

Previous topic - Next topic

dragonTopic starter

Greetings,

There was an issue with the SSL certificate on the website causing it to load and then eventually stop loading SSL, rendering the site unavailable. After reaching out to support, they informed us that the problem may not have been with the certificate, but rather with the DNS.
They have since fixed the issue and the site is now accessible to new visitors. We apologize for any inconvenience this may have caused.

When further issues arose with the site not functioning correctly for new users, support explained that there was an issue with DNS entries causing both correct and incorrect information to be pulled up. The corrected settings can take up to 3 hours to propagate through the internet due to caching time for DNS records.
 However, some providers may ignore the set caching time, resulting in a longer wait time. If DNS was changed, it may also affect the SSL functionality of the site.
  •  


JSImediaJS123

The problem lies with the certificate provided by your server, which is not authentic. Another possible scenario is that the IP address obtained when resolving the domain name led to the wrong site, causing an issue with the certificate. This could be caused by DNS errors.

A certificate serves as proof that a specific domain belongs to you, and not someone else. It also contains a pair of keys used for electronic signatures and generating a session key to encrypt traffic between the server and client, safeguarding it against external interference.

It is crucial to have the correct domain name resolved to the IP address of your web server, and an A-record with a corresponding match must be distributed by your NS.
  •  

Ali_Pro

Take control of Cloudflare services. If the hosting provider allows. Either they will issue their own certificate, or you can use the one you already have.
Ali.
  •  

nancyfromafrica

If you are attempting to access an insecure website, there are steps you can take within your browser and operating system to resolve the issue.

Firstly, ensure the time and date on your device's operating system is accurate. If it differs greatly from the SSL certificate's validity period, an error message may appear.

Clearing the cache for the site may also solve the issue, especially if your browser stores an outdated SSL certificate for that site in its cookies. Updating Chrome and your operating system to the latest versions may also help. Certain browser extensions may interfere with web page access, so try disabling them.

Antivirus software can sometimes treat HTTPS traffic as suspicious. Disabling the firewall or SSL scanning should only be done if you are confident the site is secure.

If none of these solutions work, it is likely a problem with the SSL certificate itself, and you may receive one of several error messages. You can either contact the site owner to alert them to the issue, or proceed to the insecure site at your own risk.
  •  

HafizTronic

We encountered a problem where the site would load initially but then stop loading SSL, making it inaccessible. Upon contacting support, they indicated that the problem might not lie with the certificate but rather with the DNS.

After their intervention, the site is now accessible to new visitors, and we understand the inconvenience this may have caused. However, further issues arose when the site malfunctioned for new users, and support clarified that incorrect DNS entries were being pulled up alongside the correct ones. It's important to note that corrected DNS settings can take up to 3 hours to propagate due to caching time for DNS records. It's also worth considering that certain providers may disregard the set caching time, leading to a longer wait.

Moreover, if DNS was changed, it could potentially impact the SSL functionality of the site, adding another layer of complexity to the situation. We must ensure that all aspects of the website, including SSL certificates and DNS settings, are diligently monitored and maintained to prevent such disruptions in the future. This incident underscores the critical role of proper configuration and timely resolution of issues related to website security and performance.
  •  

GesIleft

It's appalling that a simple DNS misconfiguration caused such a significant outage, and the support team's initial response was to blame the SSL certificate. This lack of attention to detail and misdiagnosis is unacceptable.
Furthermore, the fact that some providers may ignore the caching time, leading to a longer wait time, is a clear indication of a deeper issue with the DNS infrastructure.
  •  


If you like DNray forum, you can support it by - BTC: bc1qppjcl3c2cyjazy6lepmrv3fh6ke9mxs7zpfky0 , TRC20 and more...