Fork 13

problem with some browsers due certificate and too high https TLS#875

New issue

Closed

opened 2023-01-07 20:02:25 +01:00 by mckaygerhard · 5 comments

mckaygerhard commented

2023-01-07 20:02:25 +01:00

i started to receive this:

Your connection is not private Attackers might be trying to steal your information from codeberg.org (for example, passwords, messages, or credit cards). Learn more NET::ERR_CERT_COMMON_NAME_INVALID codeberg.org normally uses encryption to protect your information. When Brave tried to connect to codeberg.org this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be codeberg.org, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Brave stopped the connection before any data was exchanged. You cannot visit codeberg.org right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.

only firefox allowed me to continue.. but chrome or brave dont, also cannot paste any image (due the ajax bacgroud requst are rejected)

please ther are any possibility of flexible and relaxed way cos the reason of codeberg usage is that is light and works for many older and limited environments..

i started to receive this: ``` Your connection is not private Attackers might be trying to steal your information from codeberg.org (for example, passwords, messages, or credit cards). Learn more NET::ERR_CERT_COMMON_NAME_INVALID codeberg.org normally uses encryption to protect your information. When Brave tried to connect to codeberg.org this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be codeberg.org, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Brave stopped the connection before any data was exchanged. You cannot visit codeberg.org right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later. ``` only firefox allowed me to continue.. but chrome or brave dont, also cannot paste any image (due the ajax bacgroud requst are rejected) please ther are any possibility of flexible and relaxed way cos **the reason of codeberg usage is that is light and works for many older and limited environments..**

image.png

38 KiB

image.png

38 KiB

fsologureng commented

2023-01-07 20:19:49 +01:00

Hi, can you provide the field Common Name that you have received and the Chrome and Brave versions in order to help debugging?

I can't see differences between first and second images.

Hi, can you provide the field `Common Name` that you have received and the Chrome and Brave versions in order to help debugging? I can't see differences between first and second images.

mckaygerhard commented

2023-01-07 21:19:10 +01:00

Author

oh the imagtes were pasted.. i didn noted.. ok that is:

SSL Server Certificate
Common Name (CN) smtp.codeberg.org
Organization (O)
Organizational Unit (OU)
Common Name (CN) R3
Organization (O) Let's Encrypt
Organizational Unit (OU)

i dont know how i cath up smtp.coderberg event just coderberg

oh the imagtes were pasted.. i didn noted.. ok that is: SSL Server Certificate Common Name (CN) smtp.codeberg.org Organization (O) <Not Part Of Certificate> Organizational Unit (OU) <Not Part Of Certificate> Common Name (CN) R3 Organization (O) Let's Encrypt Organizational Unit (OU) <Not Part Of Certificate> i dont know how i cath up smtp.coderberg event just coderberg

Gusted commented

2023-01-07 22:47:00 +01:00

Owner

Weird that you're being serviced the certificates for the mail server. Could you post your version of Brave/Chromium? You can copy this by visiting chrome://version/

Weird that you're being serviced the certificates for the mail server. Could you post your version of Brave/Chromium? You can copy this by visiting `chrome://version/`

fsologureng commented

2023-01-07 23:46:17 +01:00

I think you have the old certificate (before Codeberg migration) in cache, that have that domain as part of.
I don't know how nor why.

I think you have the old certificate (before Codeberg migration) in cache, that have that domain as part of. I don't know how nor why.

mckaygerhard commented

2023-01-08 14:12:29 +01:00

Author

yeah now i try to use with private window and at least i can view the page, but the certfile still is the mail one.. cleaning the chache will erase all my history browsing..

what a shame that i cannot remembered how to import manually i guess that can solved the issue.

but @fsologureng has right.. i change the network and problem solved..

yeah now i try to use with private window and at least i can view the page, but the certfile still is the mail one.. cleaning the chache will erase all my history browsing.. what a shame that i cannot remembered how to import manually i guess that can solved the issue. but @fsologureng has right.. i change the network and problem solved.. ![image]() ![image](/attachments/8946e4a1-f952-4211-84f6-6cb9ba437f81)

image.png

9.5 KiB

image.png

11 KiB