Poorly-configured web server leading to SSL errors Topic


I attempted to log in to MyNetDiary.com this evening to renew my subscription only to find your server has a weak ephemeral Diffie-Hellman public key. As a result, Chrome refuses to load https://www.MyNetDiary.com.

I then ran your site through Qualys SSL Labs' analyzer and you scored an "F". Your certificate is fine, but your webserver's configuration is a complete disaster. You can view the report here: https://www.ssllabs.com/ssltest/analyze.html?d=mynetdiary.com

I assume you're aware of these issues and have a plan in place to upgrade the security of your server. After all, PCI compliance is a very serious matter and you risk losing the ability to accept credit cards if you do not provide a secure payment platform. When do you plan to upgrade your server?


While I'm at it, your web forum software has a bug. According to the screen I created this topic at "12:0-56am". By my watch it was a little after 4am UTC, or Midnight on the east coast of the United States.


That's interesting. It looks like you're storing time in EDT and then trying to subtract an hour so that it displays CDT.


Thank you for the feedback, BillC. I know Support reads this foroum.


Chrome continues to report a weak Diffie-Hellman public key.

Here is a link to more information about how to fix it: https://www.chromium.org/administrators/err_ssl_weak_server_ephemeral_dh_key?&hl=en-US


Thank you, Look_Out_Below - I'll make sure Support sees this.


The problem began yesterday on my Firefox browser. I can still access the site using IE, but Firefox refuses to load it. Grmph.


Hello:

We have resolved SSL connection problems at MyNetDiary website. We apologize for the inconveniences.

Thank you for your patience,
-- MyNetDiary team

Poorly-configured web server leading to SSL errors