Security Certificates for WP?

  • Author
    Posts
  • #193235

    fromtheleft
    Member

    I am getting a warning that says the security certificate for WordPress has expired (02.22.08) and as a result, I have to jump through extra step to access my own blog.

    Is there a way to get an updated security certificate to add to my computer?

    #193461

    I started getting this message last night. Thought it would be resolved by today but it still pops up:

    “”wordpress.com” is a site that uses a security certificate to encrypt data during transmission, but its certificate expired on 2/22/08 6.27PM. You should make sure that your computer’s time is correct.”

    I am using Firefox 1.5.0.11.

    Thanks in advance for your help.

    #193462

    If their security certificate has expired its obviously not safe to blog here anymore!! We should all leave!! Thanks for the heads up guys.

    #193463

    mark
    Staff

    It was renewed – all is fine.

    #193471

    ismailimail
    Member

    Still getting this error.

    #193472

    tellyworth
    Staff

    The only result of an expired certificate is the warning message you see. SSL connections are still encrypted using the same certificate.

    #193475

    fromtheleft
    Member

    So how do we update the current security certificate? Is it found on the WordPress site?

    Thanks much.

    #193476

    tellyworth
    Staff

    No, it needs to be done on the server. It has been renewed, we’re investigating why the expiration message is still showing.

    #193508

    lynnloves2
    Member

    Willing to jump through a few hoops if need, but I am glad I am not the only one getting this message, I thought it was only my computer :)

    #193519

    Still getting that message

    #193520

    mark
    Staff

    This has no practical effect on the blogs. Your blog is as safe today as it was last month.

    The single weakest element in the security of your blog is your password.

    #193521

    why even bother having a security certificate then?

    #193522

    fromtheleft
    Member

    WP can easily issue an updated Security Certificate good until 02.22.08. What is the problem?

    #193523

    fromtheleft
    Member

    S/B 02.22.08 to 02.22.09.

    What is the problem?

    #193558

    iqatrophie
    Member

    Same here with me.

    When calling “*******.wordpress.com/wp-admin”, Firefox keeps telling me the certificate expired at 02/23/08.
    When clicking continue, it says: certificate can’t be validated through OCSP, because the server is busy.

    That’s all. Then nothing else happens and I can’t login. Login only works when visiting de.wordpress.com and changing to my blog afterwards.

    #193564

    ajcann
    Member

    Still getting the warning each time, Feb 28th.

    #193567

    horseworks
    Member

    Same here….

    #193569

    fromtheleft
    Member

    ajcmann & horseworks,

    I’ve been getting this error message since 02.23.08 and as you can see from the responses, some support mouthpiece keeps says “all is fine,” and “don’t worry.”

    Well, all isn’t fine and if both Firefox and IE have entire sections devoted to Security Certificate errors, then there is a reason for the message.

    It’s clear the problem isn’t resolved.

    #193573

    tisme
    Member

    for the record, in this particular case, both tellyworth and Mark were absolutely correct saying that expired certificate had nothing to do with the safety of blogging here.

    the SSL certificate is used here to establish a secure connection during logon procedure only. usually it happens on submitting ‘Login’ button from the .com frontpage or on the generic Secure login page at: https://wordpress.com/wp-login.php

    the nagging message from the user client (browser) was merely a warning saying that the certificate couldn’t be validated with the authorities it was issued by, but the connection itself indeed still remained encrypted and thus secure.

    at least, it was far more secure than a login form you’re currently getting redirected to from this very fora (if you wasn’t logged in to your blog previously) — because a password is still sent there as a clear unencrypted plain text.

    #193575

    agrypnia
    Member

    Is there an update on the issue? It’s been almost a week now and having that window popping up every time you visit the blog is starting to get really annoying

The topic ‘Security Certificates for WP?’ is closed to new replies.