Scientific Linux Forum.org



  Reply to this topicStart new topicStart Poll

> Green padlock on secure sites. Firefox.
U308
 Posted: Apr 1 2014, 08:35 AM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 472
Member No.: 32
Joined: 11-April 11









I am no longer getting the green padlock (extended validation) on those sites where it should be displayed in the address bar. Only a grey padlock.
Can someone kindly check this banking site ... https://netbank.nedsecure.co.za/
(Could have been since the latest update).

user posted image
PM
^
krachbumm
 Posted: Apr 1 2014, 10:02 AM
Quote Post


SLF Member
***

Group: Members
Posts: 66
Member No.: 1961
Joined: 15-October 12









I get the green padlock:
user posted image

Cert:
user posted image
PM
^
U308
 Posted: Apr 1 2014, 11:20 AM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 472
Member No.: 32
Joined: 11-April 11









QUOTE (krachbumm @ Apr 1 2014, 12:02 PM)
I get the green padlock:
user posted image

Cert:
user posted image

Tja, komisch, jetzt klappt's bei mir auch. Must have been site related.
PM
^
krachbumm
 Posted: Apr 1 2014, 01:38 PM
Quote Post


SLF Member
***

Group: Members
Posts: 66
Member No.: 1961
Joined: 15-October 12









I am definitely no expert on https/ssl.

form mozilla-kb:
https://support.mozilla.org/en-US/kb/how-do-i-tell-if-my-connection-is-secure

it tried CertPatrol, but got tired of it:
http://patrol.psyced.org/
PM
^
tux99
 Posted: Apr 1 2014, 03:54 PM
Quote Post


SLF Moderator
********

Group: Moderators
Posts: 1273
Member No.: 224
Joined: 28-May 11









QUOTE (U308 @ Apr 1 2014, 09:35 AM)
I am no longer getting the green padlock (extended validation) on those sites where it should be displayed in the address bar. Only a grey padlock.
Can someone kindly check this banking site ...


Hmmm, that could have been a man-in-the-middle attack... i.e. someone presenting you a fake certificate validated by a different CA.

I use a separate browser just for online banking where I disabled all CAs apart from the one used by my bank, that way a man-in-the-middle attack becomes almost impossible.

--------------------
My personal SL6 repository, specialized in audio/video software: http://pkgrepo.linuxtech.net/el6/
(can be used together with EPEL and ELRepo repositories) - repository mirror: http://linuxsoft.cern.ch/linuxtech/el6/
PM
^
U308
 Posted: Apr 1 2014, 04:13 PM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 472
Member No.: 32
Joined: 11-April 11









I got the same certificate info as per the screenshot posted by krachbumm, so assume all was OK - clicking on the grey padlock brought up a blue site info box (instead of the usual green one). I have NoScript which should provide protection.
I checked with another OS (Kubuntu), and did not have this problem. Back to SL 6.5 and there it was again.
However the problem resolved itself a while later, and now FF in SL 6.5 correctly shows the green padlock.
Very strange indeed. I hope all's well as I did the banking transaction after checking the certificate details which I always do.
PM
^
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

Topic Options Reply to this topicStart new topicStart Poll