rate5 (OP)
Member
 Offline
Activity: 104
Merit: 100
|
 |
July 22, 2012, 02:04:49 AM
Last edit: July 22, 2012, 02:24:12 AM by rate5 |
|
Anyone else getting a "certificate has been revoked" message when they visit https://www.dwolla.com ?  |
|
|
|
|
|
|
|
|
|
|
|
"If you don't want people to know you're a scumbag then don't be a scumbag." -- margaritahuyan
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
eleuthria
Legendary
Offline
Activity: 1750
Merit: 1007
|
|
July 22, 2012, 02:06:41 AM |
|
Not getting that warning on my end, using Chrome. Certificate signed by VeriSign, and valid thru June 2013.
|
RIP BTC Guild, April 2011 - June 2015
|
|
|
Gladamas
Sr. Member
Offline
Activity: 294
Merit: 250
Bitcoin today is what the internet was in 1998.
|
|
July 22, 2012, 02:06:53 AM |
|
Hmm. I'm in Washington State, U.S.A., it seems fine here. Using Chrome on Windows 7.
|
|
|
|
BCB
CTG
VIP
Legendary
Offline
Activity: 1078
Merit: 1002
BCJ
|
|
July 22, 2012, 02:08:02 AM |
|
Not getting that warning on my end, using Chrome. Certificate signed by VeriSign, and valid thru June 2013.
Only on Firefox "Peer's Certificate has been revoked." |
|
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:08:53 AM |
|
I'm getting the error here on Chrome(latest version and proper fucking settings  ) win 7 64 and on IE9 and in Firefox 14.01; Secure Connection Failed An error occurred during a connection to www.dwolla.com. Peer's Certificate has been revoked. (Error code: sec_error_revoked_certificate) |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
EnergyVampire
|
|
July 22, 2012, 02:10:25 AM |
|
I'm getting revoked certificate on FireFox & Opera.
|
|
|
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:17:15 AM |
|
aye, it does not check revokes in real time any more, but should update the list of revokes if you have the updates on in Chrome.. |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:19:53 AM |
|
strange there is nothing popping up on google about it. Anyone check the CA server, etc? Is it a fluke or Dwolla being hacked or what?
|
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
ArticMine
Legendary
Offline
Activity: 2282
Merit: 1050
Monero Core Team
|
|
July 22, 2012, 02:23:44 AM |
|
Yes verified on Firefox 14.01 (Ubuntu 12.04)
IE 9 (Windows 7)
GNOME Web Browser 2.22.2 (gNewSense 2.3)
|
|
|
|
Kluge
Donator
Legendary
Offline
Activity: 1218
Merit: 1015
|
|
July 22, 2012, 02:23:54 AM |
|
From Symantic/Verisign: www.dwolla.com is successfully secured by an SSL certificate. The following certificates are correctly installed: ------Certificate 1------ --Issued To-- Organization: Dwolla Corp. Organizational Unit: Terms of use at www.verisign.com/rpa (c)05 Organizational Unit 2: Online Services Common Name: www.dwolla.com Locale: Des Moines, Iowa Country: US --Issued By-- Organization: VeriSign,, Inc. Organizational Unit: Terms of use at https://www.verisign.com/rpa (c)06 Organizational Unit 2: VeriSign Trust Network Common Name: VeriSign Class 3 Extended Validation SSL SGC CA Country: US Valid from Mon Jun 20 20:00:00 EDT 2011 to Thu Jun 20 19:59:59 EDT 2013 Serial Number (hex): 2b2cb56f093c54a0f949376955ebc220 ------------------------- - -----Certificate 2------ --Issued To-- Organization: VeriSign,, Inc. Organizational Unit: Terms of use at https://www.verisign.com/rpa (c)06 Organizational Unit 2: VeriSign Trust Network Common Name: VeriSign Class 3 Extended Validation SSL SGC CA Country: US --Issued By-- Organization: VeriSign,, Inc. Organizational Unit: (c) 2006 VeriSign,, Inc. - For authorized use only Organizational Unit 2: VeriSign Trust Network Common Name: VeriSign Class 3 Public Primary Certification Authority - G5 Country: US Valid from Tue Nov 07 19:00:00 EST 2006 to Mon Nov 07 18:59:59 EST 2016 Serial Number (hex): 2c48dd930df5598ef93c99547a60ed43 ------------------------- ------Certificate 3------ --Issued To-- Organization: VeriSign,, Inc. Organizational Unit: (c) 2006 VeriSign,, Inc. - For authorized use only Organizational Unit 2: VeriSign Trust Network Common Name: VeriSign Class 3 Public Primary Certification Authority - G5 Country: US --Issued By-- Organization: VeriSign,, Inc. Organizational Unit: Class 3 Public Primary Certification Authority Country: US Valid from Tue Nov 07 19:00:00 EST 2006 to Sun Nov 07 18:59:59 EST 2021 Serial Number (hex): 250ce8e030612e9f2b89f7054d7cf8fd ------------------------- On another note... "Dwolla.com wants to track your physical location." ... That's new for me. |
|
|
|
|
|
bb113
|
|
July 22, 2012, 02:24:43 AM |
|
I was literally just about to get around to deleting my account. It was the first time I visited the page in months. They sensed it.
|
|
|
|
|
|
EnergyVampire
|
|
July 22, 2012, 02:30:30 AM |
|
strange there is nothing popping up on google about it. Anyone check the CA server, etc? Is it a fluke or Dwolla being hacked or what?
Sounds like the "disruptor" is getting disrupted.  Dwolla hasn't commented on Twitter either, their last comment was about 1 hour ago. |
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:32:01 AM |
|
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
|
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
rjk
Sr. Member
Offline
Activity: 448
Merit: 250
1ngldh
|
|
July 22, 2012, 02:35:02 AM |
|
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate. Wonder if a hacker broke in. |
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:50:06 AM |
|
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate. Wonder if a hacker broke in. rgr. Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now? |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
rjk
Sr. Member
Offline
Activity: 448
Merit: 250
1ngldh
|
|
July 22, 2012, 02:55:45 AM |
|
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate. Wonder if a hacker broke in. rgr. Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now? That's what's confusing me; I manually downloaded the most recent CRL and I couldn't find Dwolla's serial number in there. I don't know if it's possible for "just anyone" to revoke a certificate; I was under the impression that the issuer had to do so. The CRL distribution point should be http://evintl-crl.verisign.com/EVIntlT1.crl (I think). EDIT: It's http://EVIntl-crl.verisign.com/EVIntl2006.crl |
|
|
|
|
sadpandatech
|
|
July 22, 2012, 02:58:44 AM |
|
Could it just be that the OCSP server is down and not able to check it? Not sure what OCSP servers there are or whether your browser has predefined ones it would sue or the site would point to one though....
No, because an OCSP error is usually a softfail, and will be noted as OCSP unreachable. This error means that specific action has been taken to revoke the certificate. Wonder if a hacker broke in. rgr. Since Symantic/Verisign list Dwolla has having a valid cert, what is the cert that is getting check and reporting as being revoked? Anyone able to grab the cert that is there now? That's what's confusing me; I manually downloaded the most recent CRL and I couldn't find Dwolla's serial number in there. I don't know if it's possible for "just anyone" to revoke a certificate; I was under the impression that the issuer had to do so. The CRL distribution point should be http://evintl-crl.verisign.com/EVIntlT1.crl (I think). EDIT: It's http://EVIntl-crl.verisign.com/EVIntl2006.crlVerisign shows it as revoked; https://securitycenter.verisign.com/celp/enroll/searchCertDetails?issuerSerial=027604bed5c781846325897410d66ecc&application_locale=VRSN_US |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
rjk
Sr. Member
Offline
Activity: 448
Merit: 250
1ngldh
|
|
July 22, 2012, 03:01:34 AM |
|
Link doesn't work for me; Serial that I have is 2b 2c b5 6f 09 3c 54 a0 f9 49 37 69 55 eb c2 20  |
|
|
|
|
