OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
There are some shenanigans going on across the interwebz right now, triggered by a root certificate that expired yesterday. This was a well-understood and anticipated event, and yet a bunch of websites seem to be broken, but only for a subset of clients. Generally, the affected clients are older browsers (e.g. Android devices that are no longer being updated) and some older Macs as well. It's possible that some users behind proxy firewalls are also affected.

The certificate for modernvespa.com is definitely valid (I renewed it this morning, just to be sure). If you are seeing this issue with modernvespa.com, my apologies. I am still investigating (and trying to comprehend the entirety of the issue) but it might be out of my control.

As a side note, it is my belief that the current certificate architecture that the entirety of the web is based on is utter shite. We are depending on a system that (a) uses certificates that have a limited lifespan, on (b) embedded operating systems (e.g. Android) that are never, ever going to receive a software update. These two facts virtually guarantee that millions of devices will end up in the landfill prematurely.
@stickyfrog avatar
UTC

Moderatus Rana
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
 
Moderatus Rana
@stickyfrog avatar
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
UTC quote
Not seeing issues here. I am using the most recent Chrome browser.
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
Also i...
@der_blechfahrer avatar
UTC

Molto Verboso
ET3 & PX150 & GTS 300 Super Sport MY23 & Yamaha Neo's electric
Joined: UTC
Posts: 1875
Location: Berlin
 
Molto Verboso
@der_blechfahrer avatar
ET3 & PX150 & GTS 300 Super Sport MY23 & Yamaha Neo's electric
Joined: UTC
Posts: 1875
Location: Berlin
UTC quote
Google representatives are always pushing for shorter and shorter certificate lifetimes. If they had their way, certs would be valid for a day at most and all identification data would be stripped off them.
Why? Because "security" and stuff, you know.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
Der Blechfahrer wrote:
Google representatives are always pushing for shorter and shorter certificate lifetimes. If they had their way, certs would be valid for a day at most and all identification data would be stripped off them.
Why? Because "security" and stuff, you know.
Is this the same Google that created an environment where Android devices were, for a good number of years, nearly impossible to update?
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
E adesso se salti quattro aggiornamenti Android rischi dover gettare via lo smartphone...
I have to keep my TV Android (Panasonic) always connected to the router otherwise I risk blocking due to failure to update. Grrr!
@syd avatar
UTC

Ossessionato
GTS300 Super (Heinz) GTS250 Super (Bulger)
Joined: UTC
Posts: 4758
Location: Tempe, AZ
 
Ossessionato
@syd avatar
GTS300 Super (Heinz) GTS250 Super (Bulger)
Joined: UTC
Posts: 4758
Location: Tempe, AZ
UTC quote
I heard about this on NPR the other day. I wasn't worried because a) I use the current version of Firefox on an updated version of Windows. And b) I knew Jess wasn't going to screw anything up.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
Syd wrote:
I knew Jess wasn't going to screw anything up.
I am far from infallible. Lately (for the last 4-5 months) I've been doing lots of live updates to the main MV server, and I break things all the time. Sometimes people even notice!
@harbinger avatar
UTC

Veni, Vidi, Posti
2023 Arancia Impulsivo Vespa GTS300 HPE , 2022 BMW R1250GSA 40th Anniversary, 2019 Ural Gear Up
Joined: UTC
Posts: 8508
Location: Toronto
 
Veni, Vidi, Posti
@harbinger avatar
2023 Arancia Impulsivo Vespa GTS300 HPE , 2022 BMW R1250GSA 40th Anniversary, 2019 Ural Gear Up
Joined: UTC
Posts: 8508
Location: Toronto
UTC quote
jess wrote:
I am far from infallible. Lately (for the last 4-5 months) I've been doing lots of live updates to the main MV server, and I break things all the time. Sometimes people even notice!
Meh :-/ it's your toy to break man and TBH the work you have done around here lately is very much appreciated by many of us. I can tell you thing we certainly get our moneys worth here and don't have ads shoved down our throats. So keep on breaking things and making this a better place. Just remember better is the enemy of good enough or something like that.
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
jess wrote:
Sometimes people even notice!
Be Italian and try not to let yourself be noticed.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
Attila wrote:
Be Italian and try not to let yourself be noticed.
I'm Gen-X, so that comes naturally to me.
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
jess wrote:
I'm Gen-X, so that comes naturally to me.
I am a Baby Boomer... (1960).
This is my characteristic:
"The stereotype wants him as a person interested in technology and social networks sometimes even more than young people but sympathetically clumsy in their use, for example by committing big mistakes due to spell checkers, sharing private material on public bulletin boards or mistaking the recipient of some texts , who has simplistic or anachronistic ideas on current issues, who typically has conservative ideologies and who is very nostalgic for the rhythms and ways of life of the 1980s and 1990s where they said there was more human contact, education. "
@monogodo avatar
UTC

Molto Verboso
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
 
Molto Verboso
@monogodo avatar
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
UTC quote
Hey Jess,

Someone got their act together this morning, and MV is coming up as secure again.

I tried to attach a screen cap of the certificate, but it wouldn't go.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
Thanks for the update! I suspect Fortinet made a change on their end to adjust how they scrutinize the certificate.
@monogodo avatar
UTC

Molto Verboso
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
 
Molto Verboso
@monogodo avatar
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
UTC quote
Except now I get random DNS_PROBE_FINISHED_NXDOMAIN errors on some sites. I ended up rebooting, and it didn't quite fix it.

MV gave the error, but now it works again (obvs).

One thing I noticed, though, when I click through a link on MV, I still get a "This site is not secure" error, but when I click Advanced and click the "yeah, go to it anyway" option, the page will load and shows as secure. Weird.
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
Can there be interactions with the antivirus system?
I mean for someone like me who has installed one.
@stickyfrog avatar
UTC

Moderatus Rana
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
 
Moderatus Rana
@stickyfrog avatar
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
UTC quote
Currently I cannot get to Instagram or Facebook. I wonder if this is related.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
stickyfrog wrote:
Currently I cannot get to Instagram or Facebook. I wonder if this is related.
Most likely not. Instagram and FB are widely reported to be down. The likely cause is a configuration problem that is affecting their DNS. Either that, or they needed to scrub the servers after the episode of 60 Minutes last night.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
Attila wrote:
Can there be interactions with the antivirus system?
I mean for someone like me who has installed one.
No clue.
@monogodo avatar
UTC

Molto Verboso
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
 
Molto Verboso
@monogodo avatar
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
UTC quote
jess wrote:
Most likely not. Instagram and FB are widely reported to be down. The likely cause is a configuration problem that is affecting their DNS. Either that, or they needed to scrub the servers after the episode of 60 Minutes last night.
I get that same DNS_PROBE_FINISHED_NXDOMAIN error for Facebook (and a few other sites) as well. My research indicates that it's a client-side issue, and I've taken steps to correct it (updating/restarting Chrome, rebooting the computer, etc.), but it's still down.
OP
@jess avatar
UTC

Petty Tyrant
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
 
Petty Tyrant
@jess avatar
0:7 And counting
Joined: UTC
Posts: 37249
Location: Bay Area, California
UTC quote
monogodo wrote:
I get that same DNS_PROBE_FINISHED_NXDOMAIN error for Facebook (and a few other sites) as well. My research indicates that it's a client-side issue, and I've taken steps to correct it (updating/restarting Chrome, rebooting the computer, etc.), but it's still down.
No, FaceBook is 100% down. Whatever issues you have with your firewall are independent of this.

See: https://www.cnn.com/2021/10/04/tech/facebook-instagram-whatsapp-outage/index.html
Forum member supplied image with no explanatory text
@stickyfrog avatar
UTC

Moderatus Rana
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
 
Moderatus Rana
@stickyfrog avatar
MP3 250 and 2 MP3 500s
Joined: UTC
Posts: 22659
Location: Nashville, Indiana
UTC quote
jess wrote:
Most likely not. Instagram and FB are widely reported to be down. The likely cause is a configuration problem that is affecting their DNS. Either that, or they needed to scrub the servers after the episode of 60 Minutes last night.
ROFL emoticon
@attila avatar
UTC

Veni, Vidi, Posti
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
 
Veni, Vidi, Posti
@attila avatar
In garage: Yamaha Tricity 155 Urban 2019 - MV Agusta 125 RS 1956
Joined: UTC
Posts: 8291
Location: Latina (Italy)
UTC quote
Ouch!
Forum member supplied image with no explanatory text
@monogodo avatar
UTC

Molto Verboso
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
 
Molto Verboso
@monogodo avatar
2017 Piaggio BV350
Joined: UTC
Posts: 1084
Location: Irving, TX
UTC quote
Alanis Morissette would be proud.
oh, the irony.
oh, the irony.
@fudmucker avatar
UTC

Ossessionato
2021 GTS 300 HPE +2013 GTS 300ie + 294 Polini
Joined: UTC
Posts: 2057
Location: Pretoria, South Africa
 
Ossessionato
@fudmucker avatar
2021 GTS 300 HPE +2013 GTS 300ie + 294 Polini
Joined: UTC
Posts: 2057
Location: Pretoria, South Africa
UTC quote
I don't know about anywhere else, but Facebook and WhatsApp are not working in South Africa. It has been 3-4 hours already...
DoubleGood Design banner

Modern Vespa is the premier site for modern Vespa and Piaggio scooters. Vespa GTS300, GTS250, GTV, GT200, LX150, LXS, ET4, ET2, MP3, Fuoco, Elettrica and more.

Buy Me A Coffee
 

Shop on Amazon with Modern Vespa

Modern Vespa is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to amazon.com


All Content Copyright 2005-2024 by Modern Vespa.
All Rights Reserved.


[ Time: 0.0193s ][ Queries: 4 (0.0056s) ][ live ][ 313 ][ ThingOne ]