Hello,
Trying to enter Pendrakens Store website gives me a warning from Chrome saying the site is under malicious attack and says one should not enter.
Anyone else has this?
The message is that the certificate has expired.
Not that the site is under attack (although the message does suggest that could be a cause), although the much more likely that its just an administrative thing where the cert needs updating.
Get the same with Firefox.
I'm sure Leon will get it sorted as soon as he's in.
I'll drop him a quick line.
Cheers - Phil
Certificate expired today according to Firefox. Shouldn't be too difficult to fix.
Same message just now via Firefox.
Quote from: Techno on 28 July 2020, 09:32:02 AM
I'm sure Leon will get it sorted as soon as he's in.
Cheers - Phil
I don't know he has so little else to do !! ;D
Getting same message but ok this time tried to log in.Seems to have cleared itself.
🐵
Have we just missed your promotion, MN ?
Cheers - Phil :)
Indeed, it's just an SSL certificate which has dropped out and caused the error message. It's a problem with our server company, apparently their certificates are on automatic 3-monthly renewals but for some reason their system has dropped these updates and everyone's sites are being affected. Our webguy is currently migrating us over to a new server instead so we should see it resolved within 24 hours.
The website is still completely secure and you can place orders as normal, no worries there.
Quote from: Noktu on 28 July 2020, 08:20:24 AM
...gives me a warning from Chrome saying the site is under malicious attack and says one should not enter.
Have you got a screenshot of that? Chrome shouldn't be saying that we're under attack as it's just a certificate error.
Leon, This is the message you get on attempting to enter the site:
"Your connection isn't private
Attackers might be trying to steal your information from pendraken.co.uk (for example, passwords, messages or credit cards).
NET::ERR_CERT_DATE_INVALID"
You then get an 'advanced' option which shows this:
"This server could not prove that it is pendraken.co.uk; its security certificate expired in the last day. This may be caused by a misconfiguration or an attacker intercepting your connection. Your computer's clock is currently set to Wednesday, 29 July 2020. Does that look right? If not, you should correct your system's clock and then refresh this page."
You then have the option of:
"Continue to pendraken.co.uk (unsafe)"
Yeah, that's the page/info I get on Firefox. I was a bit worried about the 'site is under a malicious attack' info that Noktu was getting through Chrome, which is different to what I'm seeing here and would be extremely misleading to our customers.
In better news, the transfer is going through and we should have this fixed on Wednesday.
Leon,
Worry not, that was the same message I got. But in Finnish the text translates to english as:
"The party that has attacked pendraken.co.uk might try to steal your personal information"
So sorry for the confusion created here. But I thought the site was under a DDoS attack or something. Because in my language it tells me that there are some attackers to be expected.
Quote from: Noktu on 29 July 2020, 01:54:07 PM
Worry not, that was the same message I got. But in Finnish the text translates to english as:
"The party that has attacked pendraken.co.uk might try to steal your personal information"
So sorry for the confusion created here. But I thought the site was under a DDoS attack or something. Because in my language it tells me that there are some attackers to be expected.
Ah right, that's OK then! The transfer is going through today so hopefully everything will be back to normal by tonight.
Still showing it as 'down' at 06.42 today :(.
Same here, Steve.
Cheers - Phil
I'm glad it's not just my computer or anything like that Phil.
Quote from: Steve J on 30 July 2020, 05:42:51 AM
Still showing it as 'down' at 06.42 today :(.
It seems to be taking a bit longer for the migration to go through than we hoped, which is a bit frustrating.
The site is still fine though, you just need to click through to it and you can browse as normal. It's a bit like the DVLA suddenly deciding that your car MoT isn't valid, even though it was tested last month. The car is still perfectly safe to drive, you just don't have a bit of paper to say so.
Quote from: Leon on 30 July 2020, 12:33:07 PM
It's a bit like the DVLA suddenly deciding that your car MoT isn't valid, even though it was tested last month. The car is still perfectly safe to drive, you just don't have a bit of paper to say so.
But wouldn't that invalidate my insurance?
Quote from: Raider4 on 30 July 2020, 12:41:41 PM
But wouldn't that invalidate my insurance?
It would on a car, luckily we don't have website insurance!
Our webguy has clarified it a little this afternoon, it's purely an admin glitch behind the scenes where our valid SSL certificate is not being applied to the website within the server company's systems. It's very odd, but we've been told that the website migration will be completed by Friday morning and the site should be accessible as normal again.
Site worked without warnings for me on 30 July 2020, 08:20:48 PM :)
And for me at 20.29!
... and relax.
Yep, all sorted now and back to normal!
Phew! Glad it's all sorted :).