Topic: ** Official ** Cryptsy funds are safe and secure - page 5. (Read 11162 times)

Yeah I'm waiting for a detailed report but in the meantime I am not talking about the fact that cryptsy.com is still missing from the list or that browsers are still giving a warning (because cryptsy.com is missing from the list) but I'm wondering why there is a certificate with a giant list in the first place (criticizing Incapsula)

good to know ya you are prolly catching unusual amount of traffic since ya'll are now linked to that satoshi mod'd thread...thanks

We are on a temporary certificate until a new one is generated for the new security provider. Wait until its in place.

Wow, is this real? They are using one SSL certificate for all of their customers which simply includes a giant list of all the domain names, meaning every Incapsula customer could potentially impersonate every other? So banggood.com can just MITM cryptsy.com if they manage to mess with their DNS records for example. Not sure if this is a CDN requirement or something but it does sound kinda shitty to me...

just did a force refresh and got the same ^

Ok, but your cryptsy.co, is not valid for their certificate.

www.cryptsy.com uses an invalid security certificate.

The certificate is only valid for the following names:
  incapsula.com , *.aguasandinas.cl , *.aldimobile.com.au , *.alyn.org , *.api.sell-n.com , *.astabis.com , *.b54.com , *.bancdeswiss.com , *.banggood.com , *.bank54.com , *.careyou.com.au , *.chc.com.sg , *.e-c.co.il , *.empireoption.com , *.epaydataonline.com , *.forexmagnates.com , *.gcmforex.com , *.grouploop.com , *.hallmarkinstantstreaming.com , *.hallmarkspiritclips.com , *.ioption.com , *.kaboodlehq.com , *.kaboodlepilot.com , *.liderforex.com , *.manage.cm , *.minit.com , *.my.truck-n.com , *.ordertickets.ca , *.partitionhost.com , *.paycall.co.il , *.pinklily.com.au , *.rushmorebingo.com , *.servertastic.com , *.smarttradefx.com , *.spicy.com.br , *.stormbattle.net , *.tamuvu.com , *.traderush.com , *.traderxp.com , *.videntfinancial.com , *.vipbinary.com , *.winoptions.com , *.xfcu.org , *.yakitome.com , *.zenobiajewellery.com , aldimobile.com.au , alyn.org , api.sell-n.com , astabis.com , b54.com , bancdeswiss.com , banggood.com , careyou.com.au , chc.com.sg , cp.truststream.co.uk , elpmultimedia.com , empireoption.com , epaydataonline.com , forexmagnates.com , gcmforex.com , hallmarkinstantstreaming.com , hallmarkspiritclips.com , ioption.com , kaboodlehq.com , kaboodlepilot.com , liderforex.com , manage.cm , minit.com , my.truck-n.com , ordertickets.ca , partitionhost.com , paycall.co.il , pinklily.com.au , recettage.ria.neopod.fm-ged.com , redcappi.com , rushmorebingo.com , servertastic.com , smarttradefx.com , spicy.com.br , stormbattle.net , tamuvu.com , traderush.com , traderxp.com , videntfinancial.com , vipbinary.com , winoptions.com , www.e-c.co.il , www.elpmultimedia.com , www.homologpedidos.sodexho.com.br , www.redcappi.com , xfcu.org , yakitome.com , zenobiajewellery.com 

(Error code: ssl_error_bad_cert_domain)

~nh

Incapsula is the correct entry.   That is our new security service.

BigVern

it is my understanding that cryptsy will now operate under incapsulas dns protection layer/cdn network

What is your SOA for DNS?  nslookup still returns the incapsula.com records

a:\BA\main>nslookup cryptsy.com 75.75.75.75
Server:  cdns01.comcast.net
Address:  75.75.75.75

Non-authoritative answer:
Name:    cryptsy.com
Addresses:  199.83.133.236
          199.83.134.32

I thought it was rackspace, but that wont' let me query it.

a:\BA\main>nslookup cryptsy.com ns1.rackspace.com
Server:  ns.rackspace.com
Address:  69.20.95.4

*** ns.rackspace.com can't find cryptsy.com: Query refused

Ip changes from time to time and you should not be accessing the site using the ip

BigVern

Yes, we are using Incapsula.   Still finishing the ssl setup with them.

No, this is just a warning from chrome that your DNS record is still hosed.  It will take a while until the dns poisoning goes away

not a virus, just looks like an invalid cert config

What does he say about the invalid certificate warnings regarding other domains, namely:


which several users here reported and which resolve to IPs associated with Incapsula.com, the DDoS mitigation service crytpsy are now apparently using as well?

If he thinks a virus is the most probable explanation then cryptsy needs a new security team. This should be fully resolved in cooperation with Incapsula, immediately, and a full attack mitigation statement and impact report be published here and on the site if there is any interested in maintaining a base level of user trust. The site doesn't even offer two-factor authentication and now a potential MITM is about to be swept under the "must be a virus" rug?

And nobody should login before any of that is resolved

Definitely not a virus, happened here on a stock iPad, a stock android device, and a clean win7 build.

Absolutely, categorically *not* a virus.

Wrong that's coming from chroome and I had that a while ago too, now it's gone, and in my case it was a different url.. but heey i have a virus said the smart guy..
Tried again now it's another even more different url, but that's just my viruses..  

From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.

Site is up waiting for SSL generation with new security service.

You lose at Internet.

Hmm well I can access the site as per normal now, but ssl still isn't active and there's a little "Protected & Accelerated by Incapsula" pop-out on the side.