Author

Topic: Did TradeHill change their SSL certificate? (Read 1305 times)

hero member
Activity: 530
Merit: 500
August 19, 2011, 09:35:45 AM
#11
Good Morning Folks,

We are aware of this issue and working on it today. Basically, the new web server software we're using isn't properly sending the entire certificate chain and therefore some browsers do not trust our certificate. The cause of this was the reconfiguration of our data center that took place yesterday.

Regards,
Adam - Tradehill


+1

That's how customer service is supposed to work.
I second that!
Awesome stuff.

Now I hope they will return my email these days. Sad
member
Activity: 78
Merit: 10
Ok thanks Adam.  I was hoping nothing was amiss, but just wanted to be extra careful, especially given recent events.

Rob
legendary
Activity: 1918
Merit: 1570
Bitcoin: An Idea Worth Spending
Good Morning Folks,

We are aware of this issue and working on it today. Basically, the new web server software we're using isn't properly sending the entire certificate chain and therefore some browsers do not trust our certificate. The cause of this was the reconfiguration of our data center that took place yesterday.

Regards,
Adam - Tradehill


+1

That's how customer service is supposed to work.
sr. member
Activity: 420
Merit: 250
Good Morning Folks,

We are aware of this issue and working on it today. Basically, the new web server software we're using isn't properly sending the entire certificate chain and therefore some browsers do not trust our certificate. The cause of this was the reconfiguration of our data center that took place yesterday.

Regards,
Adam - Tradehill
hero member
Activity: 530
Merit: 500
At my end Chrome says the SSL certificate is legit but the page contains data that is not loaded in via HTTPS and may be insecure.
This is only when your logged in though.
full member
Activity: 154
Merit: 100
I get no error. The SHA1 fingerprint of the certificate I get is bf5d728ac70686806c6fe7da2a7f1fe98daf98f1.

I've got the same fingerprint here. -- Looks legit.

Safari is now telling me it doesn't trust the ssl certificate on the TradeHill and my java API application is telling me that it doesn't recognize the Root certificate. I've sent a query to TradeHill tech support but was wondering if anyone else has noticed any issues.

Try loading this page:

https://www.sffutureroot.com/

Do you get a similar error?

Cheers,
Kermee
full member
Activity: 134
Merit: 102
I get no error. The SHA1 fingerprint of the certificate I get is bf5d728ac70686806c6fe7da2a7f1fe98daf98f1.
full member
Activity: 154
Merit: 100
Looks like a new wildcard cert was issued 08/11/2011, 7 days ago...

Cheers,
Kermee
newbie
Activity: 13
Merit: 0
Chrome doesn't say anything about a new certificate, nor that it doesn't trust it. What page to you go to? Front page?
legendary
Activity: 1204
Merit: 1015
That is concerning, especially since this would be the best time to hack a Bitcoin site (or at least its domain) since everyone in the Bitcoin world is in NYC for the Bitcoin conference. I would advise not logging in until the conference has concluded or we have heard from someone at Tradehill that can be verified. Most likely nothing is amiss, but it's hard to say with all the hackers we have here.
member
Activity: 78
Merit: 10
Safari is now telling me it doesn't trust the ssl certificate on the TradeHill and my java API application is telling me that it doesn't recognize the Root certificate. I've sent a query to TradeHill tech support but was wondering if anyone else has noticed any issues.
Jump to: