Pages:
Author

Topic: ** Official ** Cryptsy funds are safe and secure - page 5. (Read 11173 times)

sr. member
Activity: 350
Merit: 250
- "Bitcore (BTX) - Airdrops every Monday"


Incapsula is the correct entry.   That is our new security service.

BigVern

Ok, but your cryptsy.co, is not valid for their certificate.

www.cryptsy.com uses an invalid security certificate.

The certificate is only valid for the following names:
  incapsula.com , *.aguasandinas.cl , *.aldimobile.com.au , *.alyn.org , *.api.sell-n.com , *.astabis.com , *.b54.com , *.bancdeswiss.com , *.banggood.com , *.bank54.com , *.careyou.com.au , *.chc.com.sg , *.e-c.co.il , *.empireoption.com , *.epaydataonline.com , *.forexmagnates.com , *.gcmforex.com , *.grouploop.com , *.hallmarkinstantstreaming.com , *.hallmarkspiritclips.com , *.ioption.com , *.kaboodlehq.com , *.kaboodlepilot.com , *.liderforex.com , *.manage.cm , *.minit.com , *.my.truck-n.com , *.ordertickets.ca , *.partitionhost.com , *.paycall.co.il , *.pinklily.com.au , *.rushmorebingo.com , *.servertastic.com , *.smarttradefx.com , *.spicy.com.br , *.stormbattle.net , *.tamuvu.com , *.traderush.com , *.traderxp.com , *.videntfinancial.com , *.vipbinary.com , *.winoptions.com , *.xfcu.org , *.yakitome.com , *.zenobiajewellery.com , aldimobile.com.au , alyn.org , api.sell-n.com , astabis.com , b54.com , bancdeswiss.com , banggood.com , careyou.com.au , chc.com.sg , cp.truststream.co.uk , elpmultimedia.com , empireoption.com , epaydataonline.com , forexmagnates.com , gcmforex.com , hallmarkinstantstreaming.com , hallmarkspiritclips.com , ioption.com , kaboodlehq.com , kaboodlepilot.com , liderforex.com , manage.cm , minit.com , my.truck-n.com , ordertickets.ca , partitionhost.com , paycall.co.il , pinklily.com.au , recettage.ria.neopod.fm-ged.com , redcappi.com , rushmorebingo.com , servertastic.com , smarttradefx.com , spicy.com.br , stormbattle.net , tamuvu.com , traderush.com , traderxp.com , videntfinancial.com , vipbinary.com , winoptions.com , www.e-c.co.il , www.elpmultimedia.com , www.homologpedidos.sodexho.com.br , www.redcappi.com , xfcu.org , yakitome.com , zenobiajewellery.com  

(Error code: ssl_error_bad_cert_domain)

~nh

Wow, is this real? They are using one SSL certificate for all of their customers which simply includes a giant list of all the domain names, meaning every customer could impersonate every other? So banggood.com can just MITM cryptsy.com if they manage to mess with their DNS records for example. Not sure if this is a CDN requirement or something but it does sound kinda shitty to me...

We are on a temporary certificate until a new one is generated for the new security provider. Wait until its in place.

Yeah I'm waiting for a detailed report but in the meantime I am not talking about the fact that cryptsy.com is still missing from the list or that browsers are still giving a warning (because cryptsy.com is missing from the list) but I'm wondering why there is a certificate with a giant list in the first place (criticizing Incapsula)
newbie
Activity: 28
Merit: 0
We are currently having an issue with our service provider and our public IP space. All servers are functioning fine, all accounts are secure and all fund are safe. As soon as our providers fix the issue we will be back online. Thank you.


good to know ya you are prolly catching unusual amount of traffic since ya'll are now linked to that satoshi mod'd thread...thanks
hero member
Activity: 826
Merit: 1001
@Bit_John


Incapsula is the correct entry.   That is our new security service.

BigVern

Ok, but your cryptsy.co, is not valid for their certificate.

www.cryptsy.com uses an invalid security certificate.

The certificate is only valid for the following names:
  incapsula.com , *.aguasandinas.cl , *.aldimobile.com.au , *.alyn.org , *.api.sell-n.com , *.astabis.com , *.b54.com , *.bancdeswiss.com , *.banggood.com , *.bank54.com , *.careyou.com.au , *.chc.com.sg , *.e-c.co.il , *.empireoption.com , *.epaydataonline.com , *.forexmagnates.com , *.gcmforex.com , *.grouploop.com , *.hallmarkinstantstreaming.com , *.hallmarkspiritclips.com , *.ioption.com , *.kaboodlehq.com , *.kaboodlepilot.com , *.liderforex.com , *.manage.cm , *.minit.com , *.my.truck-n.com , *.ordertickets.ca , *.partitionhost.com , *.paycall.co.il , *.pinklily.com.au , *.rushmorebingo.com , *.servertastic.com , *.smarttradefx.com , *.spicy.com.br , *.stormbattle.net , *.tamuvu.com , *.traderush.com , *.traderxp.com , *.videntfinancial.com , *.vipbinary.com , *.winoptions.com , *.xfcu.org , *.yakitome.com , *.zenobiajewellery.com , aldimobile.com.au , alyn.org , api.sell-n.com , astabis.com , b54.com , bancdeswiss.com , banggood.com , careyou.com.au , chc.com.sg , cp.truststream.co.uk , elpmultimedia.com , empireoption.com , epaydataonline.com , forexmagnates.com , gcmforex.com , hallmarkinstantstreaming.com , hallmarkspiritclips.com , ioption.com , kaboodlehq.com , kaboodlepilot.com , liderforex.com , manage.cm , minit.com , my.truck-n.com , ordertickets.ca , partitionhost.com , paycall.co.il , pinklily.com.au , recettage.ria.neopod.fm-ged.com , redcappi.com , rushmorebingo.com , servertastic.com , smarttradefx.com , spicy.com.br , stormbattle.net , tamuvu.com , traderush.com , traderxp.com , videntfinancial.com , vipbinary.com , winoptions.com , www.e-c.co.il , www.elpmultimedia.com , www.homologpedidos.sodexho.com.br , www.redcappi.com , xfcu.org , yakitome.com , zenobiajewellery.com  

(Error code: ssl_error_bad_cert_domain)

~nh

Wow, is this real? They are using one SSL certificate for all of their customers which simply includes a giant list of all the domain names, meaning every customer could impersonate every other? So banggood.com can just MITM cryptsy.com if they manage to mess with their DNS records for example. Not sure if this is a CDN requirement or something but it does sound kinda shitty to me...

We are on a temporary certificate until a new one is generated for the new security provider. Wait until its in place.
sr. member
Activity: 350
Merit: 250
- "Bitcore (BTX) - Airdrops every Monday"


Incapsula is the correct entry.   That is our new security service.

BigVern

Ok, but your cryptsy.co, is not valid for their certificate.

www.cryptsy.com uses an invalid security certificate.

The certificate is only valid for the following names:
  incapsula.com , *.aguasandinas.cl , *.aldimobile.com.au , *.alyn.org , *.api.sell-n.com , *.astabis.com , *.b54.com , *.bancdeswiss.com , *.banggood.com , *.bank54.com , *.careyou.com.au , *.chc.com.sg , *.e-c.co.il , *.empireoption.com , *.epaydataonline.com , *.forexmagnates.com , *.gcmforex.com , *.grouploop.com , *.hallmarkinstantstreaming.com , *.hallmarkspiritclips.com , *.ioption.com , *.kaboodlehq.com , *.kaboodlepilot.com , *.liderforex.com , *.manage.cm , *.minit.com , *.my.truck-n.com , *.ordertickets.ca , *.partitionhost.com , *.paycall.co.il , *.pinklily.com.au , *.rushmorebingo.com , *.servertastic.com , *.smarttradefx.com , *.spicy.com.br , *.stormbattle.net , *.tamuvu.com , *.traderush.com , *.traderxp.com , *.videntfinancial.com , *.vipbinary.com , *.winoptions.com , *.xfcu.org , *.yakitome.com , *.zenobiajewellery.com , aldimobile.com.au , alyn.org , api.sell-n.com , astabis.com , b54.com , bancdeswiss.com , banggood.com , careyou.com.au , chc.com.sg , cp.truststream.co.uk , elpmultimedia.com , empireoption.com , epaydataonline.com , forexmagnates.com , gcmforex.com , hallmarkinstantstreaming.com , hallmarkspiritclips.com , ioption.com , kaboodlehq.com , kaboodlepilot.com , liderforex.com , manage.cm , minit.com , my.truck-n.com , ordertickets.ca , partitionhost.com , paycall.co.il , pinklily.com.au , recettage.ria.neopod.fm-ged.com , redcappi.com , rushmorebingo.com , servertastic.com , smarttradefx.com , spicy.com.br , stormbattle.net , tamuvu.com , traderush.com , traderxp.com , videntfinancial.com , vipbinary.com , winoptions.com , www.e-c.co.il , www.elpmultimedia.com , www.homologpedidos.sodexho.com.br , www.redcappi.com , xfcu.org , yakitome.com , zenobiajewellery.com  

(Error code: ssl_error_bad_cert_domain)

~nh

Wow, is this real? They are using one SSL certificate for all of their customers which simply includes a giant list of all the domain names, meaning every Incapsula customer could potentially impersonate every other? So banggood.com can just MITM cryptsy.com if they manage to mess with their DNS records for example. Not sure if this is a CDN requirement or something but it does sound kinda shitty to me...
sr. member
Activity: 252
Merit: 250
just did a force refresh and got the same ^
sr. member
Activity: 473
Merit: 250


Incapsula is the correct entry.   That is our new security service.

BigVern

Ok, but your cryptsy.co, is not valid for their certificate.

www.cryptsy.com uses an invalid security certificate.

The certificate is only valid for the following names:
  incapsula.com , *.aguasandinas.cl , *.aldimobile.com.au , *.alyn.org , *.api.sell-n.com , *.astabis.com , *.b54.com , *.bancdeswiss.com , *.banggood.com , *.bank54.com , *.careyou.com.au , *.chc.com.sg , *.e-c.co.il , *.empireoption.com , *.epaydataonline.com , *.forexmagnates.com , *.gcmforex.com , *.grouploop.com , *.hallmarkinstantstreaming.com , *.hallmarkspiritclips.com , *.ioption.com , *.kaboodlehq.com , *.kaboodlepilot.com , *.liderforex.com , *.manage.cm , *.minit.com , *.my.truck-n.com , *.ordertickets.ca , *.partitionhost.com , *.paycall.co.il , *.pinklily.com.au , *.rushmorebingo.com , *.servertastic.com , *.smarttradefx.com , *.spicy.com.br , *.stormbattle.net , *.tamuvu.com , *.traderush.com , *.traderxp.com , *.videntfinancial.com , *.vipbinary.com , *.winoptions.com , *.xfcu.org , *.yakitome.com , *.zenobiajewellery.com , aldimobile.com.au , alyn.org , api.sell-n.com , astabis.com , b54.com , bancdeswiss.com , banggood.com , careyou.com.au , chc.com.sg , cp.truststream.co.uk , elpmultimedia.com , empireoption.com , epaydataonline.com , forexmagnates.com , gcmforex.com , hallmarkinstantstreaming.com , hallmarkspiritclips.com , ioption.com , kaboodlehq.com , kaboodlepilot.com , liderforex.com , manage.cm , minit.com , my.truck-n.com , ordertickets.ca , partitionhost.com , paycall.co.il , pinklily.com.au , recettage.ria.neopod.fm-ged.com , redcappi.com , rushmorebingo.com , servertastic.com , smarttradefx.com , spicy.com.br , stormbattle.net , tamuvu.com , traderush.com , traderxp.com , videntfinancial.com , vipbinary.com , winoptions.com , www.e-c.co.il , www.elpmultimedia.com , www.homologpedidos.sodexho.com.br , www.redcappi.com , xfcu.org , yakitome.com , zenobiajewellery.com 

(Error code: ssl_error_bad_cert_domain)

~nh
member
Activity: 100
Merit: 10
John, can you please post the real IP address for cryptsy.com

I believe it is 166.78.0.180 but just want to confirm it.

~nh

Ip changes from time to time and you should not be accessing the site using the ip

BigVern

What is your SOA for DNS?  nslookup still returns the incapsula.com records

a:\BA\main>nslookup cryptsy.com 75.75.75.75
Server:  cdns01.comcast.net
Address:  75.75.75.75

Non-authoritative answer:
Name:    cryptsy.com
Addresses:  199.83.133.236
          199.83.134.32

I thought it was rackspace, but that wont' let me query it.

a:\BA\main>nslookup cryptsy.com ns1.rackspace.com
Server:  ns.rackspace.com
Address:  69.20.95.4

*** ns.rackspace.com can't find cryptsy.com: Query refused




Incapsula is the correct entry.   That is our new security service.

BigVern
hero member
Activity: 686
Merit: 504
always the student, never the master.
John, can you please post the real IP address for cryptsy.com

I believe it is 166.78.0.180 but just want to confirm it.

~nh

Ip changes from time to time and you should not be accessing the site using the ip

BigVern

What is your SOA for DNS?  nslookup still returns the incapsula.com records

a:\BA\main>nslookup cryptsy.com 75.75.75.75
Server:  cdns01.comcast.net
Address:  75.75.75.75

Non-authoritative answer:
Name:    cryptsy.com
Addresses:  199.83.133.236
          199.83.134.32

I thought it was rackspace, but that wont' let me query it.

a:\BA\main>nslookup cryptsy.com ns1.rackspace.com
Server:  ns.rackspace.com
Address:  69.20.95.4

*** ns.rackspace.com can't find cryptsy.com: Query refused


it is my understanding that cryptsy will now operate under incapsulas dns protection layer/cdn network
sr. member
Activity: 473
Merit: 250
John, can you please post the real IP address for cryptsy.com

I believe it is 166.78.0.180 but just want to confirm it.

~nh

Ip changes from time to time and you should not be accessing the site using the ip

BigVern

What is your SOA for DNS?  nslookup still returns the incapsula.com records

a:\BA\main>nslookup cryptsy.com 75.75.75.75
Server:  cdns01.comcast.net
Address:  75.75.75.75

Non-authoritative answer:
Name:    cryptsy.com
Addresses:  199.83.133.236
          199.83.134.32

I thought it was rackspace, but that wont' let me query it.

a:\BA\main>nslookup cryptsy.com ns1.rackspace.com
Server:  ns.rackspace.com
Address:  69.20.95.4

*** ns.rackspace.com can't find cryptsy.com: Query refused

member
Activity: 100
Merit: 10
John, can you please post the real IP address for cryptsy.com

I believe it is 166.78.0.180 but just want to confirm it.

~nh

Ip changes from time to time and you should not be accessing the site using the ip

BigVern
member
Activity: 100
Merit: 10
Chrome just gave me a warning message when I tried to access cryptsy stating that the server was identified as secure.4rx.com. What's the deal with that?

SSL is down
SSL requests not supported for www.cryptsy.com
The site is not configured with SSL support.

It is not down, it is serving an invalid SSL certificate issued to an unrelated entity (secure.4rx.com) which might indicate a quite serious man-in-the-middle attack

Code:
www.cryptsy.com resolves to IP 166.78.0.180 Rackspace Hosting, Texas
secure.4rx.com resolves to IP 199.83.132.157 Incapsula, Delaware

Nobody should try to login even if the site comes back until this is fully resolved


UPDATE EDIT: now www.cryptsy.com resolves to IP 199.83.128.157, also Incapsula, North Carolina

Seems like Incapsula.com offers some DDoS protection and general web security and cryptsy.com just put them in front of their site? So at least not a MITM attack but possibly just some Incapsula fuckup

Please confirm BitJohn

Yes, we are using Incapsula.   Still finishing the ssl setup with them.
sr. member
Activity: 473
Merit: 250
From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.

No, this is just a warning from chrome that your DNS record is still hosed.  It will take a while until the dns poisoning goes away
full member
Activity: 448
Merit: 130
3D-Printing goes Blockchain!
not a virus, just looks like an invalid cert config
sr. member
Activity: 350
Merit: 250
- "Bitcore (BTX) - Airdrops every Monday"
Hmmmmmmmmmm....



Mine is still pointing to secure.4rx.com over here. Interesting that you are getting something different.

From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.

What does he say about the invalid certificate warnings regarding other domains, namely:

Code:
professionalperformanceonline.nl
secure.4rx.com

which several users here reported and which resolve to IPs associated with Incapsula.com, the DDoS mitigation service crytpsy are now apparently using as well?

If he thinks a virus is the most probable explanation then cryptsy needs a new security team. This should be fully resolved in cooperation with Incapsula, immediately, and a full attack mitigation statement and impact report be published here and on the site if there is any interested in maintaining a base level of user trust. The site doesn't even offer two-factor authentication and now a potential MITM is about to be swept under the "must be a virus" rug?

And nobody should login before any of that is resolved
full member
Activity: 189
Merit: 100
Hmmmmmmmmmm....



Mine is still pointing to secure.4rx.com over here. Interesting that you are getting something different.

From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.
Definitely not a virus, happened here on a stock iPad, a stock android device, and a clean win7 build.

Absolutely, categorically *not* a virus.
legendary
Activity: 2674
Merit: 3000
Terminated.
Hmmmmmmmmmm....



Mine is still pointing to secure.4rx.com over here. Interesting that you are getting something different.

From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.
Wrong that's coming from chroome and I had that a while ago too, now it's gone, and in my case it was a different url.. but heey i have a virus said the smart guy..
Tried again now it's another even more different url, but that's just my viruses..  Roll Eyes
legendary
Activity: 954
Merit: 1000
Hmmmmmmmmmm....



Mine is still pointing to secure.4rx.com over here. Interesting that you are getting something different.

From BigVern on Cryptsy's Chatbox:

BigVern: @erpbridge: whoever made those screenshots prob has a virus then

....so I suggest you guys go get your virus scanners fixed.
hero member
Activity: 826
Merit: 1001
@Bit_John
Site is up waiting for SSL generation with new security service.
full member
Activity: 189
Merit: 100
I logged in a few min ago to get my frank addy lol! Typed anyone home in the chat, lulz!
You lose at Internet.
full member
Activity: 294
Merit: 100
Hmm well I can access the site as per normal now, but ssl still isn't active and there's a little "Protected & Accelerated by Incapsula" pop-out on the side.
Pages:
Jump to: