Topic: Dwolla's SSL certificate has been revoked - page 2. (Read 5961 times)
Looks like it is working now with a GoDaddy Class 2 cert. Probably a temporary fix until they get their green-bar cert working again.
WWW.DWOLLA.COM Pending Renewal Digital ID Class 3 - Extended Validation SGC Renewal Jul 22, 2012 to Jul 22, 2014
WWW.DWOLLA.COM Revoked Digital ID Class 3 - Extended Validation SGC Renewal Jun 21, 2011 to Jun 6, 2013
WWW.DWOLLA.COM Revoked Digital ID Class 3 - Extended Validation SGC FreeReplacement Jun 21, 2011 to Jun 20, 2013
I'm assuming from the 'free replacement' that is listed this happened to them before. Their new one is still pending.
WWW.DWOLLA.COM Revoked Digital ID Class 3 - Extended Validation SGC Renewal Jun 21, 2011 to Jun 6, 2013
WWW.DWOLLA.COM Revoked Digital ID Class 3 - Extended Validation SGC FreeReplacement Jun 21, 2011 to Jun 20, 2013
I'm assuming from the 'free replacement' that is listed this happened to them before. Their new one is still pending.
I wonder if this is having any effect on pirateat40's business model. 
The issue is still there. According to Firefox, the certificate has been revoked. According to Android browser, it is valid, and the page loads. Doesn't Android check for revoked certificates?!
Same message here on my Firefox
sec_error_revoked_certificate
sec_error_revoked_certificate
Dwolla on Twitter (23 minutes ago):
"Working with our partners at @verisign and @symantec to look into a certificate issue some of our users are reporting. Still secure.
"Working with our partners at @verisign and @symantec to look into a certificate issue some of our users are reporting. Still secure.
I wonder if someone manged to guess their passphrase on verisign and hit revoke on it? Seems unlikely, but otherwise this is some really strange 'issue'..
Anyone with a cert of there own able to verify that just hitting 'options' and then entering your passphrase will give one the option to revoke from there on Verisign?
Dwolla on Twitter (23 minutes ago):
"Working with our partners at @verisign and @symantec to look into a certificate issue some of our users are reporting. Still secure.
Edit: Linky www.twitter.com/dwolla/status/226882115516653568
"Working with our partners at @verisign and @symantec to look into a certificate issue some of our users are reporting. Still secure.
Edit: Linky www.twitter.com/dwolla/status/226882115516653568
ahh, did not see the session ID on my end. hehe.
Just put www.dwolla.com in the search here;
https://securitycenter.verisign.com/celp/enroll/searchCertDetails?
System UnavailableJust put www.dwolla.com in the search here;
https://securitycenter.verisign.com/celp/enroll/searchCertDetails?
The system is currently not available. Please retry your request later.
I'm guessing you have a login somewhere?
https://securitycenter.verisign.com/celp/enroll/outsideSearch?application_locale=VRSN_US
ahh, did not see the session ID on my end. hehe.
Just put www.dwolla.com in the search here;
https://securitycenter.verisign.com/celp/enroll/searchCertDetails?
System UnavailableJust put www.dwolla.com in the search here;
https://securitycenter.verisign.com/celp/enroll/searchCertDetails?
The system is currently not available. Please retry your request later.
I'm guessing you have a login somewhere?
link works OK;
Continue session
Error
Due to inactivity and for security reasons, your user session has timed out. Click Continue to go to the VeriSign home page.
ahh, did not see the session ID on my end. hehe.
Just put www.dwolla.com in the search here;
https://securitycenter.verisign.com/celp/enroll/searchCertDetails?
link works OK;
Continue session
Error
Due to inactivity and for security reasons, your user session has timed out. Click Continue to go to the VeriSign home page.
Looks like they are already on it. New entry just appeared;
Verify Certificate Common Name: www.dwolla.com
Status: Pending Renewal
Validity (GMT): Jul 22, 2012 - Jul 22, 2014
Class: Digital ID Class 3 - Extended Validation SGC Renewal
Organization: Dwolla Corp.
Organizational Unit: Online Services
Terms of use at www.verisign.com/rpa (c)05
State: Iowa
City/Location: Des Moines
Country: US
Serial Number: 2c34739c28b93ac00ea3009662affcff
Issuer Digest: 0d0a7f5229e7dacc9b3bbfb77bb9fc6a
Verify Certificate Common Name: www.dwolla.com
Status: Pending Renewal
Validity (GMT): Jul 22, 2012 - Jul 22, 2014
Class: Digital ID Class 3 - Extended Validation SGC Renewal
Organization: Dwolla Corp.
Organizational Unit: Online Services
Terms of use at www.verisign.com/rpa (c)05
State: Iowa
City/Location: Des Moines
Country: US
Serial Number: 2c34739c28b93ac00ea3009662affcff
Issuer Digest: 0d0a7f5229e7dacc9b3bbfb77bb9fc6a
Verisign shows it as revoked; https://securitycenter.verisign.com/celp/enroll/searchCertDetails?issuerSerial=027604bed5c781846325897410d66ecc&application_locale=VRSN_US
Link doesn't work for me; Serial that I have is 2b 2c b5 6f 09 3c 54 a0 f9 49 37 69 55 eb c2 20 
link works OK;
Verify Certificate Common Name: www.dwolla.com
Status: Revoked
Validity (GMT): Jun 21, 2011 - Jun 20, 2013
Class: Digital ID Class 3 - Extended Validation SGC FreeReplacement
Organization: Dwolla Corp.
Organizational Unit: Online Services
Terms of use at www.verisign.com/rpa (c)05
State: Iowa
City/Location: Des Moines
Country: US
Serial Number: 2b2cb56f093c54a0f949376955ebc220
Issuer Digest: 027604bed5c781846325897410d66ecc
Verisign shows it as revoked; https://securitycenter.verisign.com/celp/enroll/searchCertDetails?issuerSerial=027604bed5c781846325897410d66ecc&application_locale=VRSN_US
Link doesn't work for me; Serial that I have is 2b 2c b5 6f 09 3c 54 a0 f9 49 37 69 55 eb c2 20 Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate.Wonder if a hacker broke in.
rgr.
Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now?
Verisign shows it as revoked; https://securitycenter.verisign.com/celp/enroll/searchCertDetails?issuerSerial=027604bed5c781846325897410d66ecc&application_locale=VRSN_US
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate.Wonder if a hacker broke in.
rgr.
Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now?
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate.Wonder if a hacker broke in.
rgr.
Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now?
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate.Wonder if a hacker broke in.
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
strange there is nothing popping up on google about it. Anyone check the CA server, etc? Is it a fluke or Dwolla being hacked or what?
Sounds like the "disruptor" is getting disrupted.
Dwolla hasn't commented on Twitter either, their last comment was about 1 hour ago.
Jump to: