Poorly-configured web server leading to SSL errors Topic
BillC
06/04/15
I attempted to log in to MyNetDiary.com this evening to renew my subscription only to find your server has a weak ephemeral Diffie-Hellman public key. As a result, Chrome refuses to load https://www.MyNetDiary.com.
I then ran your site through Qualys SSL Labs' analyzer and you scored an "F". Your certificate is fine, but your webserver's configuration is a complete disaster. You can view the report here: https://www.ssllabs.com/ssltest/analyze.html?d=mynetdiary.com
I assume you're aware of these issues and have a plan in place to upgrade the security of your server. After all, PCI compliance is a very serious matter and you risk losing the ability to accept credit cards if you do not provide a secure payment platform. When do you plan to upgrade your server?
BillC
06/04/15
While I'm at it, your web forum software has a bug. According to the screen I created this topic at "12:0-56am". By my watch it was a little after 4am UTC, or Midnight on the east coast of the United States.
BillC
06/04/15
That's interesting. It looks like you're storing time in EDT and then trying to subtract an hour so that it displays CDT.
Dietitian
06/05/15
Thank you for the feedback, BillC. I know Support reads this foroum.
Look_Out_Below
06/22/15
Chrome continues to report a weak Diffie-Hellman public key.
Here is a link to more information about how to fix it: https://www.chromium.org/administrators/err_ssl_weak_server_ephemeral_dh_key?&hl=en-US
Dietitian
06/22/15
replied to Look_Out_Below
Thank you, Look_Out_Below - I'll make sure Support sees this.
Profmike
07/04/15
The problem began yesterday on my Firefox browser. I can still access the site using IE, but Firefox refuses to load it. Grmph.
Support
07/06/15
Hello:
We have resolved SSL connection problems at MyNetDiary website. We apologize for the inconveniences.
Thank you for your patience,
-- MyNetDiary team
Poorly-configured web server leading to SSL errors