Jump to content

https://problem


kmk

Recommended Posts

Posted

Screenshots_2014-12-26-01-57-26.thumb.pnHi, I can browse my site withou problem in desktop...but I dont know why has problem when I try browse in smartphones(tried with others too), chrome, samgsung browser, uc browser...:sad:...only work fine with firefox...

is a bug of beta 4?

Screenshots_2014-12-07-11-11-40.png

Posted

Same on my site but that is not IPS related, you can also upload a blank file and the result would be the same.
Seems like, for some reasons, the mobile devices detect the SSL certs we use as not secure.
Noticed this some days ago but didn't really get into it.

Posted

You probably need to add a chain to your servers SSL certificate. I can see you have your websites SSL certificate registered through AlphaSSL and you have no intermediate certificate included with it,

kirito@ArchLinux:~$ openssl s_client -showcerts -connect e-mymy.com:443 </dev/null
CONNECTED(00000003)
depth=0 C = US, OU = Domain Control Validated, CN = www.e-mymy.com
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 C = US, OU = Domain Control Validated, CN = www.e-mymy.com
verify error:num=27:certificate not trusted
verify return:1
depth=0 C = US, OU = Domain Control Validated, CN = www.e-mymy.com
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
 0 s:/C=US/OU=Domain Control Validated/CN=www.e-mymy.com
   i:/C=BE/O=GlobalSign nv-sa/CN=AlphaSSL CA - SHA256 - G2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=/C=US/OU=Domain Control Validated/CN=www.e-mymy.com
issuer=/C=BE/O=GlobalSign nv-sa/CN=AlphaSSL CA - SHA256 - G2
---
No client certificate CA names sent
---
SSL handshake has read 1942 bytes and written 434 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: FCE037EE10364526458C5CE634BB0826614BCEA9B13D2377E0884AB86E640579
    Session-ID-ctx: 
    Master-Key: 7CC60A73CB913D8B32E596DFE041F097CE4F375A8A1CC17B68964364F84B431D422EFD5D18EF71F1DADB5BF54B14EF6C
    Key-Arg   : None
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - a3 5c 8e fe 67 dc bf ba-b5 56 ca 7b 2d 72 20 5b   .\..g....V.{-r [
    0010 - 2b 57 1b 09 a0 39 85 65-b1 22 53 72 2c 03 1a 97   +W...9.e."Sr,...
    0020 - af f2 43 b7 69 8a 35 de-d7 5c f1 63 a3 77 0e cb   ..C.i.5..\.c.w..
    0030 - 7a a1 33 3a 20 4f 1a 08-48 3d 5d 1f ea cc 91 14   z.3: O..H=].....
    0040 - f7 27 43 a9 40 c0 02 36-53 62 a2 b8 ef 51 d1 b9   .'C.@..6Sb...Q..
    0050 - 8d e7 bd e2 ce 12 0a ff-62 03 73 98 ec 72 cd c8   ........b.s..r..
    0060 - bf 9a 61 84 7a 4c bf 8e-45 2a 94 3a 34 dd 1c f8   ..a.zL..E*.:4...
    0070 - b7 dd a3 aa 60 60 64 74-83 16 6d 97 64 76 11 cc   ....``dt..m.dv..
    0080 - 16 40 c7 e5 80 a0 7d 2d-bf 65 89 fc 1c de f1 05   .@....}-.e......
    0090 - 3d bf 8c 0a 92 3a 06 3c-62 00 80 58 ea 06 a2 f5   =....:.<b..X....
    00a0 - 8e 35 e6 0d 6a 8b d3 9b-5d 4c 67 83 31 18 f9 f8   .5..j...]Lg.1...
    00b0 - d4 f5 db 2f 00 2c b0 1e-21 59 37 82 36 ba ac 71   .../.,..!Y7.6..q

    Start Time: 1419879635
    Timeout   : 300 (sec)
    Verify return code: 21 (unable to verify the first certificate)
---
DONE
kirito@ArchLinux:~$ 

You should have received an intermediate certificate with your purchase, but if you don't have it, you can download another here:
https://support.globalsign.com/customer/portal/articles/1223298-alphassl-intermediate-certificates

Please follow the instructions here to install your intermediate certificate on Apache:
https://support.globalsign.com/customer/portal/articles/1225234-install-certificate---apache-openssl

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...