From a couple of different machines I show that the sites SSL cert is expired. Is this really the case?

Same here.

Will you explain to a dummy like me what that means exactly? I googled some stuff but not a while lot of sense was made.

Will you explain to a dummy like me what that means exactly? I googled some stuff but not a while lot of sense was made.

An SSL certificate is basically a cryptography layer between you and a website that confirms you are actually communicating with the website you think you are. It was to help prevent someone losing sensitive information when entering it into a website that was possibly hacked by someone trying to get that information.

This is the best "Simple" explanation I can give.

Roger. Makes sense. I won't use my SSN for a password anymore.

Yep, I'm getting it too.

I'm on tapatalk, not seeing any notifications.

Started getting it a few minutes ago.
[panic]

Someone just bought a Tavor with my bank card.

Yup, same here. Chrome keeps "warning" me...

Yup-Chrome keeps warning me.

Damn ObamaCare!

Cert just expired at 10:00 something AM today and trot is right, no difference in the security of the site prior to 10:00.

When you do a renewal, make sure to have your certificate authority do a SHA-256 certificate. Chrome and local cert stores for Microsoft (I think anyway, haven't looked too much into this) will start throwing certificate errors sometime in November. That's what Google has ball parked for their release which will enforce this. I just got done replacing all our certificates at work because of this.

Also, SSL v3 has a vulnerability right now and TLS without v3 fallback should be configured.

Yeah. Will have it replaced tonight.

It will be forward compatible

AAAANNNNNDDDDD.... Fixed.

Sweet I will change my password back to my SSN.

Seriously though, thanks J.

Thanks J!

And SSLv3 disabled now too. Not that I worry about it as much here, we are providing basic privacy security for posters, not protecting financial or ultra-sensitive information. Had already done that on all of my eCommerce sites/clients.

Damn ObamaCare!
I vote for this as the best post in the thread!

[Coffee]got that yesterday and figured it would go away, so here I am back on... good thing I came here first, was gonna post something like this... oh well, Good Day All.

And SSLv3 disabled now too. Not that I worry about it as much here, we are providing basic privacy security for posters, not protecting financial or ultra-sensitive information. Had already done that on all of my eCommerce sites/clients.

Yeah, I neglected to add "not that it matters much for this site".

Cert just expired at 10:00 something AM today and trot is right, no difference in the security of the site prior to 10:00.

When you do a renewal, make sure to have your certificate authority do a SHA-256 certificate. Chrome and local cert stores for Microsoft (I think anyway, haven't looked too much into this) will start throwing certificate errors sometime in November. That's what Google has ball parked for their release which will enforce this. I just got done replacing all our certificates at work because of this.

Also, SSL v3 has a vulnerability right now and TLS without v3 fallback should be configured.

This is good advice. The new certificate is unfortunately SHA1 still. Edit: Nevermind, was looking at the thumbprint.