Just an FYI, my antivirus is reporting that the SSL certificate on cdn-business2.discourse.org has expired. Looking at the certificate info, it looks like it expired on 9/15/2017.
2 Likes
That CDN should no longer be in use. What site are you seeing this on?
1 Like
wanikani.com, and email notifications from the same.
Should I let them know directly? I know Discourse hosts them.
We do host them so thatās on us. Will look into this.
1 Like
Iām trying to figure out what file is coming from there, but if I select āblockā in my anti-virus, I still donāt see any failed files in Chromeās dev tools, so Iām not sure. But I can trigger it every time I refresh the page, soā¦ itās in there somewhere.
1 Like
Iāve narrowed down some of the links.
In my email messages, itās due to emojis in archived (i.e. old) mail. So that makes perfect sense. No problem there.
If I go to community.wanikani.com and refresh the page, I donāt get any warnings. But if I open the developer console (Chrome), I immediately get the warning, and will also get it every time I refresh the page with developer console still open.
Itās worth noting that I have āDisable Cacheā checked in the developer console, so itās reloading everything every time, whereas with the console closed, it will use cache. That may explain the difference.
Iāve checked under Firefox, and get similar behavior.
IE doesnāt have any problems.
3 Likes
Iāve looked at this and canāt find any references to the old CDN (cdn-business2) on the live site. Also, I donāt get any warnings with the developer console open.
Are there any specific pages with which youāre having trouble? With that information Iāll be able to address the problem.
3 Likes
The home page of community.wanikani.com was doing it, as well as most others I tried.
I couldnāt find any references to cdn-business2 either, though the security popup must be finding it somewhere.
Unfortunately, yesterday I told my antivirus to accept the SSL certificate, and I canāt find where to revoke it now, so Iām not sure I can replicate the issue anymore 
But we have a large population of fellow software people on the site for some reason, so I can ask if anyone else is seeing this, and point them to this thread.
Thanks for looking into it!
One of the members at wanikani was able to find a reference to cdn-business2.discourse.org.
His initial comment about .org vs .com is due to my mistyping when I posted an inquiry on wanikani.com.
3 Likes
I think my suspicions are right. I tested with a basic html file like this:
<!DOCTYPE html>
<html>
<head>
<script>
//# sourceMappingURL=https://cdn-business2.discourse.org/assets/plugin-8bb7a7a3d6d016496acaa8df06bd691326dfec1aaf169e60160556d9794ddfbc.js.map
</script>
</head>
<body>
<h1>Cabecera</h1>
<p>PƔrrafo.</p>
</body>
</html>
If I open this with Firefox (with the dev console open) it makes the request to cdn-business2.discourse.org and the AV complains.
5 Likes
Oh yes, excellent sleuthing work all!
1 Like