Forum Feedback SSL certificate for techenclave.com has expired

Status
Not open for further replies.
Hayabusa

Hayabusa

Inactive
Contributor
Hello! I just logged in to Techenclave after a very long time. I was presented with a "this site is not secure" message. I noticed that the site's TLS certificate has expired, is anyone looking into this?
Screenshot 2019-11-28 at 9.30.31 PM.png
 
  • Like
Reactions: puneet.darji
When I tried to access it from my office, I received a compliance breach email from compliance team stating you tried accessing a dangerous website....
Wonder why don't they renew it for 3-5 yrs in one go!!
 
nRiTeCh said:
When I tried to access it from my office, I received a compliance breach email from compliance team stating you tried accessing a dangerous website....
Wonder why don't they renew it for 3-5 yrs in one go!!
Click to expand...
Whoa...
What kind of monitoring application does your office use?
I have been accessing TE behind WebSense in the office today but thankfully didn't get that kind of warning.

Never looked up SSL cert pricing but doesn't seem too exorbitant. But then again I have no idea about the kind of revenue TE generates via ads only.

in.godaddy.com

Buy an SSL Certificate to Secure Your Website

An SSL certificate from GoDaddy will secure your web site with both industry-standard 128-bit encryption and high grade 256-bit encryption.
in.godaddy.com in.godaddy.com
 
TE is using free certs from LetsEncrypt which are 3 months validity each time. Not sure if LetsEncrypt offers longer validity certs for free.
 
If you use a browser that insists on encrypted links like Chrome then it won't even allow you to post here. Every link you click gives you a warning, do you really want to proceed with this dodgy site, heh

I see its back up now
 
If the forum is running on Linux instance - it will be easy to setup cron job to auto-renew, let's encrypt cert (same applies to Windows too).

Nowadays, many UI tools will help in setting up the cert for Lets Encrypt.

Also, I do see that we have our site hosted through AWS. We can add these changes to prevent the cert expiry issue from happening.
 
Marcus Fenix said:
Whoa...
What kind of monitoring application does your office use?
I have been accessing TE behind WebSense in the office today but thankfully didn't get that kind of warning.

Never looked up SSL cert pricing but doesn't seem too exorbitant. But then again I have no idea about the kind of revenue TE generates via ads only.

in.godaddy.com

Buy an SSL Certificate to Secure Your Website

An SSL certificate from GoDaddy will secure your web site with both industry-standard 128-bit encryption and high grade 256-bit encryption.
in.godaddy.com in.godaddy.com
Click to expand...

Betting its from Cyberoam or Sophos equivalent. Earlier it had shown Techenclave as dangerous!
Post automatically merged:

nRiTeCh said:
When I tried to access it from my office, I received a compliance breach email from compliance team stating you tried accessing a dangerous website....
Wonder why don't they renew it for 3-5 yrs in one go!!
Click to expand...

Because its not free. I don't see the point of paying for SSL certs if you know your setup with LE. Used them and they work fine.
Post automatically merged:

Renegade said:
Sorry guys. What @vishalrao said ^

The certs are supposed to auto renew every month but for some reason the cron job is not running. Last time it was my mistake (wrong config) but this time it should have run. I will try to troubleshoot this over the weekend.
Click to expand...

There seems to be another issue with me being logged out in a few seconds...
 
Last edited:
Renegade said:
Sorry guys. What @vishalrao said ^

The certs are supposed to auto renew every month but for some reason the cron job is not running. Last time it was my mistake (wrong config) but this time it should have run. I will try to troubleshoot this over the weekend.
Click to expand...

I just read that LetsEncrypt CertBot only allows renewal of certs with less than 30 days validity remaining, so maybe if you are trying to renew every month it is failing because there is still 60 days remaining on the cert? Try renewal every 75 days instead, in the cron job?
 
Status
Not open for further replies.
Top Bottom