SSL Certificate expired on [cdn-business2.discourse.org]

rfindley · September 20, 2017, 6:38pm

Just an FYI, my antivirus is reporting that the SSL certificate on cdn-business2.discourse.org has expired. Looking at the certificate info, it looks like it expired on 9/15/2017.

jomaxro · September 20, 2017, 6:49pm

That CDN should no longer be in use. What site are you seeing this on?

rfindley · September 20, 2017, 6:52pm

wanikani.com, and email notifications from the same.
Should I let them know directly? I know Discourse hosts them.

jomaxro · September 20, 2017, 6:58pm

We do host them so that’s on us. Will look into this.

rfindley · September 20, 2017, 7:06pm

I’m trying to figure out what file is coming from there, but if I select ‘block’ in my anti-virus, I still don’t see any failed files in Chrome’s dev tools, so I’m not sure. But I can trigger it every time I refresh the page, so… it’s in there somewhere.

rfindley · September 20, 2017, 7:26pm

I’ve narrowed down some of the links.

In my email messages, it’s due to emojis in archived (i.e. old) mail. So that makes perfect sense. No problem there.

If I go to community.wanikani.com and refresh the page, I don’t get any warnings. But if I open the developer console (Chrome), I immediately get the warning, and will also get it every time I refresh the page with developer console still open.

It’s worth noting that I have “Disable Cache” checked in the developer console, so it’s reloading everything every time, whereas with the console closed, it will use cache. That may explain the difference.

I’ve checked under Firefox, and get similar behavior.

IE doesn’t have any problems.

supermathie · September 21, 2017, 3:49pm

I’ve looked at this and can’t find any references to the old CDN (cdn-business2) on the live site. Also, I don’t get any warnings with the developer console open.

Are there any specific pages with which you’re having trouble? With that information I’ll be able to address the problem.

rfindley · September 21, 2017, 4:16pm

The home page of community.wanikani.com was doing it, as well as most others I tried.
I couldn’t find any references to cdn-business2 either, though the security popup must be finding it somewhere.

Unfortunately, yesterday I told my antivirus to accept the SSL certificate, and I can’t find where to revoke it now, so I’m not sure I can replicate the issue anymore

But we have a large population of fellow software people on the site for some reason, so I can ask if anyone else is seeing this, and point them to this thread.

Thanks for looking into it!

rfindley · September 22, 2017, 4:40pm

One of the members at wanikani was able to find a reference to cdn-business2.discourse.org.
His initial comment about .org vs .com is due to my mistyping when I posted an inquiry on wanikani.com.

Carloswaldo · September 22, 2017, 5:01pm

I think my suspicions are right. I tested with a basic html file like this:

<!DOCTYPE html>
<html>
<head>
	<script>
		//# sourceMappingURL=https://cdn-business2.discourse.org/assets/plugin-8bb7a7a3d6d016496acaa8df06bd691326dfec1aaf169e60160556d9794ddfbc.js.map
	</script>
</head>
<body>
	<h1>Cabecera</h1>
	<p>Párrafo.</p>
</body>
</html>

If I open this with Firefox (with the dev console open) it makes the request to cdn-business2.discourse.org and the AV complains.

codinghorror · September 23, 2017, 12:07pm

Oh yes, excellent sleuthing work all!

Topic		Replies	Views
Hosted-by-discourse is using expired SSL certificates yet status page is green Support	10	973	October 1, 2021
Discourse CDNs are blocked by privacy badger Site feedback	47	12695	August 15, 2017
Chrome bug shows SSL certificates as invalid when they aren't Support	5	803	September 8, 2020
Problem with my SSL certificate Installation	17	11332	June 8, 2024
Site Down. Please Help! Support	6	626	May 3, 2019

SSL Certificate expired on [cdn-business2.discourse.org]

Related topics