WordPress.com Forums » Topic: Security Certificates for WP?

eddiemullan on "Security Certificates for WP?"

eddiemullan — Sun, 16 Mar 2008 16:04:56 +0000

got sorted after I posted that. Thanks to whoever @WP did that :)

mark on "Security Certificates for WP?"

mark — Sat, 15 Mar 2008 12:08:49 +0000

If you have a problem:
- clear your browser cache, come back to the site and retry
- post the exact URL you were getting to
- post the exact message you see. Detail is very important.
- screenshots are good

But please do not take this as meaning your blog is not secure. It is. Your password which you probably chose is and always will be the weakest link.

But we need extremely good detail. Without that we can do nothing.

eddiemullan on "Security Certificates for WP?"

eddiemullan — Sat, 15 Mar 2008 11:48:26 +0000

I have the same problem, its preventing some people viewing my blog. Can someone take a peek at my blog and let me know if its something Ive posted thats causing the error or is it just at WPs end...

scrubone on "Security Certificates for WP?"

scrubone — Sat, 15 Mar 2008 10:00:02 +0000

I've been getting the same thing. However I've found if you go to http://www.wordpress.com rather than directly to your own blog, you authenticate through the working certificate and there are no problems.

fromtheleft on "Security Certificates for WP?"

fromtheleft — Wed, 12 Mar 2008 20:29:33 +0000

It's not resolved. I've gotten this message since the 22nd of February, 2008. WP says it's fixed -- it isn't.

tenderhooligan on "Security Certificates for WP?"

tenderhooligan — Wed, 12 Mar 2008 16:08:25 +0000

Me too. It says that this topic has been resolved but I don't think it has.

Thank you.

agrypnia on "Security Certificates for WP?"

agrypnia — Wed, 12 Mar 2008 15:26:43 +0000

Dunno about others but I'm still getting the same expiration message. How long has this been going on, a month?

universalgeni on "Security Certificates for WP?"

universalgeni — Tue, 11 Mar 2008 11:03:55 +0000

Ok. WP should get themselves certified someplace else from now on. This is really not worth it - the damage to your renommee is to big...

tellyworth on "Security Certificates for WP?"

tellyworth — Tue, 11 Mar 2008 10:54:04 +0000

It's the same problem, not a new one. We have the certificate for wordpress.com. It's the *.wordpress.com certificate that still hasn't been delivered.

universalgeni on "Security Certificates for WP?"

universalgeni — Tue, 11 Mar 2008 10:50:46 +0000

Will this new security issue be looked into?

https://m.wordpress.com/

universalgeni on "Security Certificates for WP?"

universalgeni — Tue, 11 Mar 2008 04:12:17 +0000

I just got that error message again on this link - mobile phone blogging: https://m.wordpress.com/

barry on "Security Certificates for WP?"

barry — Sat, 08 Mar 2008 17:49:11 +0000

I assume you are getting this when logging in at http://wordpress.com/ ? If so, this should be fixed. Sorry for the inconvenience.

inspiredword on "Security Certificates for WP?"

inspiredword — Sat, 08 Mar 2008 17:40:37 +0000

Getting message that 'security for website has expired'.

What should l do?

Thanks

hoodathunk on "Security Certificates for WP?"

hoodathunk — Sat, 08 Mar 2008 16:47:40 +0000

I'd like to report, by the way, that I'm no longer receiving the warning message. I can't say why or whether anyone else is doing so, of course, but I wanted to be forthcoming.

phildarb on "Security Certificates for WP?"

phildarb — Sat, 08 Mar 2008 15:54:33 +0000

There is a great deal of pretty awful administration at WP, as I am dicovering, and nothing seems to get fixed, but an expired certificate isn't worth bothering about . If I avoided sites without certificates I'd never get aything done.

secondchancetolive on "Security Certificates for WP?"

secondchancetolive — Sat, 08 Mar 2008 14:33:36 +0000

I also received the certificate this morning telling me to make sure the time on my computer was the same as the what the message was telling me that the time was posting. I clicked continue to the certificate and was permitted access to Second Chance to Live. Strange as this moring is the first time that I have received the certificate not renewed notification. What is up?

universalgeni on "Security Certificates for WP?"

universalgeni — Sat, 08 Mar 2008 11:18:03 +0000

No worries. It doesn't matter. The certificate is ok...

forums6789 on "Security Certificates for WP?"

forums6789 — Sat, 08 Mar 2008 11:14:08 +0000

Now I'm getting a message that says 'That the the Certificate has expired' in IE7

tellyworth on "Security Certificates for WP?"

tellyworth — Sat, 08 Mar 2008 05:47:59 +0000

They haven't given us an excuse - they're not responding to our requests.

hoodathunk on "Security Certificates for WP?"

hoodathunk — Sat, 08 Mar 2008 05:23:26 +0000

Is there an update to this? I'm well aware that the crypto provided by this cert is still the same old SSL that was in use before the cert expired, the problem is that the certificate is used to authenticate the site is the actual site and not someone jacking the connection. In short, it's not the crypto I'm concerned about, it's the authentication the cert provides, which was the primary purpose behind public certificates to begin with.

It's March 8 now (at least where I live.) Surely the cert has arrived by now? (If not, what's the certificating authorities excuse for taking this long to provide it? Have they ever heard of FedEx?)

tellyworth on "Security Certificates for WP?"

tellyworth — Sun, 02 Mar 2008 00:03:17 +0000

It was renewed some time ago but we still don't have the new certificate. We'll install it as soon as we do.

agrypnia on "Security Certificates for WP?"

agrypnia — Sat, 01 Mar 2008 23:36:13 +0000

Is there an update on the issue? It's been almost a week now and having that window popping up every time you visit the blog is starting to get really annoying

tisme on "Security Certificates for WP?"

tisme — Sat, 01 Mar 2008 13:31:49 +0000

for the record, in this particular case, both tellyworth and Mark were absolutely correct saying that expired certificate had nothing to do with the safety of blogging here.

the SSL certificate is used here to establish a secure connection during logon procedure only. usually it happens on submitting 'Login' button from the .com frontpage or on the generic Secure login page at: httpS://wordpress.com/wp-login.php

the nagging message from the user client (browser) was merely a warning saying that the certificate couldn't be validated with the authorities it was issued by, but the connection itself indeed still remained encrypted and thus secure.

at least, it was far more secure than a login form you're currently getting redirected to from this very fora (if you wasn't logged in to your blog previously) -- because a password is still sent there as a clear unencrypted plain text.

fromtheleft on "Security Certificates for WP?"

fromtheleft — Thu, 28 Feb 2008 16:58:13 +0000

ajcmann & horseworks,

I've been getting this error message since 02.23.08 and as you can see from the responses, some support mouthpiece keeps says "all is fine," and "don't worry."

Well, all isn't fine and if both Firefox and IE have entire sections devoted to Security Certificate errors, then there is a reason for the message.

It's clear the problem isn't resolved.

horseworks on "Security Certificates for WP?"

horseworks — Thu, 28 Feb 2008 16:14:01 +0000

Same here....

ajcann on "Security Certificates for WP?"

ajcann — Thu, 28 Feb 2008 09:30:38 +0000

Still getting the warning each time, Feb 28th.

iqatrophie on "Security Certificates for WP?"

iqatrophie — Tue, 26 Feb 2008 19:59:05 +0000

Same here with me.

When calling "*******.wordpress.com/wp-admin", Firefox keeps telling me the certificate expired at 02/23/08.
When clicking continue, it says: certificate can't be validated through OCSP, because the server is busy.

That's all. Then nothing else happens and I can't login. Login only works when visiting de.wordpress.com and changing to my blog afterwards.

fromtheleft on "Security Certificates for WP?"

fromtheleft — Tue, 26 Feb 2008 12:43:01 +0000

S/B 02.22.08 to 02.22.09.

What is the problem?

fromtheleft on "Security Certificates for WP?"

fromtheleft — Tue, 26 Feb 2008 12:42:25 +0000

WP can easily issue an updated Security Certificate good until 02.22.08. What is the problem?

antivalentine on "Security Certificates for WP?"

antivalentine — Tue, 26 Feb 2008 11:45:01 +0000

why even bother having a security certificate then?