Access to BPIP is problematic. | Bitcointalksearch.org

suchmoon

legendary

Activity: 3612

Merit: 8904

https://bpip.org

Quote from: dkbit98 on June 28, 2022, 01:03:53 PM

Is this the same thing like I posted above, or different?

Same thing. Worked fine for two years until it decided not to. But I'll try to set up a new scheduled script just in case.

Also thinking of setting up some external monitoring to alert me if the cert is older than X days.

dkbit98

legendary

Activity: 2212

Merit: 7060

Cashback 15%

Quote from: suchmoon on June 26, 2022, 10:47:10 AM

I guess I need to go old school with it and put it on my calendar to renew it. Scheduled task keeps failing for some unclear reason.

Or you can just set auto renewal option for Let's encrypt certificate, just configure it on your server crontab or using simple auto-renew script.
There are several options you can do this, it's all free and you can find easy tutorials that can help you.
This one is from 2020 but I think it's still working:
https://onepagezen.com/letsencrypt-auto-renew-certbot-apache/

Quote from: suchmoon on June 27, 2022, 06:16:30 PM

There is a script and it's scheduled to renew it every 3 months IIRC. It just fails to work occasionally for some reason. Running it manually works fine, at least it did the two times I had this problem. Not a big deal, just annoying.

Is this the same thing like I posted above, or different?

suchmoon

legendary

Activity: 3612

Merit: 8904

https://bpip.org

Quote from: examplens on June 27, 2022, 03:49:30 PM

it can be very tedious to renew a free certificate, especially if you administer multiple domains.
i saw that there are WordPress plugins that do that part automatically and keep the certificates always renewed. is it possible that there is no script or bot that would automatically do this on non-WP sites?

There is a script and it's scheduled to renew it every 3 months IIRC. It just fails to work occasionally for some reason. Running it manually works fine, at least it did the two times I had this problem. Not a big deal, just annoying.

examplens

legendary

Activity: 3248

Merit: 3098

Quote from: DaveF on June 27, 2022, 06:57:48 AM

The SSL not auto renewing seems to be happening more and more often to letsencrypt sites happened here too last week:
https://bitcointalksearch.org/topic/m.60441862
and also to a server I manage for someone. Just stopped renewing. There are some discussions about it on hosting forums but no real solution as of now that I can see.
The fun of random errors that don't reoccur.

-Dave

it can be very tedious to renew a free certificate, especially if you administer multiple domains.
i saw that there are WordPress plugins that do that part automatically and keep the certificates always renewed. is it possible that there is no script or bot that would automatically do this on non-WP sites?

DaveF

legendary

Activity: 3444

Merit: 6182

Crypto Swap Exchange

The SSL not auto renewing seems to be happening more and more often to letsencrypt sites happened here too last week:
https://bitcointalksearch.org/topic/m.60441862
and also to a server I manage for someone. Just stopped renewing. There are some discussions about it on hosting forums but no real solution as of now that I can see.
The fun of random errors that don't reoccur.

-Dave

ABCbits

legendary

Activity: 2842

Merit: 7333

Crypto Swap Exchange

Quote from: suchmoon on June 26, 2022, 10:47:10 AM

Quote from: sheenshane on June 26, 2022, 10:21:27 AM

Just curious, how much it will cost for renewing SSL?
It's very helpful to us on this site and I hope it too this will be resolved soon.

It's a free certificate and apparently we're getting what we're paying for.

It's only free because BPIP use SSL certificate from Let's Encrypt. It's non-profit service which sponsored by many tech company. Paid SSL certificate also exist out there.

sheenshane

legendary

Activity: 2366

Merit: 1206

Quote from: suchmoon on June 26, 2022, 10:47:10 AM

Quote from: sheenshane on June 26, 2022, 10:21:27 AM

Just curious, how much it will cost for renewing SSL?
It's very helpful to us on this site and I hope it too this will be resolved soon.

It's a free certificate and apparently we're getting what we're paying for.

I'm on it.

Edit: should be ok now.

I guess I need to go old school with it and put it on my calendar to renew it. Scheduled task keeps failing for some unclear reason.

Thank you for enlightening me, glad to know it.

Confirmed, it's accessible now. And also, the Bpip chrome extension working smoothly and fine ATM.

Thank you.

suchmoon

legendary

Activity: 3612

Merit: 8904

https://bpip.org

Quote from: sheenshane on June 26, 2022, 10:21:27 AM

Just curious, how much it will cost for renewing SSL?
It's very helpful to us on this site and I hope it too this will be resolved soon.

It's a free certificate and apparently we're getting what we're paying for.

I'm on it.

Edit: should be ok now.

I guess I need to go old school with it and put it on my calendar to renew it. Scheduled task keeps failing for some unclear reason.

sheenshane

legendary

Activity: 2366

Merit: 1206

The reason also why Bpip chrome extension doesn't work for me now and I wonder upon opening my account there's no Bpip rank under on my profile.

In addition above, yeah the validation of their certificate was expired based on xolphin.com/sslchecker.

Quote from: YOSHIE on June 26, 2022, 07:17:15 AM

Quote from: ibminer on June 26, 2022, 08:27:38 AM

Looks like the SSL certificate expired, so we'll need to get it renewed..

Thank you, very helpful, hope it will be resolved quickly.

Just curious, how much it will cost for renewing SSL?
It's very helpful to us on this site and I hope it too this will be resolved soon.

PX-Z

hero member

Activity: 1414

Merit: 802

Top Crypto Casino

Based on SslShopper^[1] bpip.org's SSL certificate expired 1 day ago that's why it shows just like that. Although there's a way to access it using the method mentioned above which is the most recommended way to access a website if the ssl cert expired.

[1] https://www.sslshopper.com/ssl-checker.html#hostname=http://bpip.org

ibminer

legendary

Activity: 1789

Merit: 2535

Goonies never say die.

Quote from: YOSHIE on June 26, 2022, 07:17:15 AM

@Charles-Tim, dare not continue, not safe.

Well, personally I'd say it is as safe as it was yesterday..! Although I'm sure the flow of money going to major trusted certificate authorities would disagree with me. Tongue

Looks like the SSL certificate expired, so we'll need to get it renewed.. but your communication to the site is as encrypted as it would have been yesterday. The browser notification is just alerting you to the date being expired, so the browser no longer officially trusts the certificate, and is warning you.

I can tell you it's the same certificate that was on the site yesterday, it's just expired now. Regardless, as @Charles-Tim pointed out, I don't believe there would be anything of value to gain from compromising BPIP's SSL certificate.

YOSHIE

legendary

Activity: 2002

Merit: 1742

@Charles-Tim, dare not continue, not safe.

Quote from: LoyceV on June 26, 2022, 07:09:46 AM

Notify @ibminer @suchmoon

@LoyceV, Thanks, information, I'll try.

Quote from: ibminer on June 26, 2022, 08:27:38 AM

Looks like the SSL certificate expired, so we'll need to get it renewed..

Thank you, very helpful, hope it will be resolved quickly.

Now Bpip is back to normal.

Thanks, @ibminer & @suchmoon and also @LoyceV, your hard work to update everything.

LoyceV

legendary

Activity: 3290

Merit: 16489

Thick-Skinned Gang Leader and Golden Feather 2021

Quote from: YOSHIE on June 26, 2022, 06:49:22 AM

@LoyceV, might know something Bpip.

I know you should post this in [BPIP] Bitcointalk Public Information Project [Back in Action].
Unfortunately, this happens a lot nowadays: the Let's Encrypt certificate is supposed to auto-renew every 3 months, but that fails once in a while.

Notify @ibminer @suchmoon

Charles-Tim

legendary

Activity: 1512

Merit: 4795

On the page you saw the error, click on advance, you will see this:

Quote

This server could not prove that it is bpip.org; its security certificate expired in the last day. This may be caused by a misconfiguration or an attacker intercepting your connection. Your computer's clock is currently set to Sunday, June 26, 2022. Does that look right? If not, you should correct your system's clock and then refresh this page.

You can click on 'proceed to bpip.org (unsafe)'. The site is just to check information that is available to the public, so nothing bad, you can proceed. Nothing like password to login or filling of credit card information or anything that an attacker can use against you.

YOSHIE

legendary

Activity: 2002

Merit: 1742

Unlike usual, today I tried to access BPIP, it doesn't seem to have permission for me.
my wifi and internet are fine.

https://bpip.org/Profile?p=

Code:

Your connection is not private

Attackers may try to steal your information from bpip.org (for example, passwords, messages or credit cards). Learn more

NET::ERR_CERT_DATE_INVALID

To get Chrome's highest level of security, enable enhanced protection.

I'd like to know if anyone has had access problems like I did, what happened, is there a possibility for a further update.

@LoyceV, might know something Bpip.

Topic: Access to BPIP is problematic. (Read 220 times)