Have Host security certificate

Off Topic
#1

Big annoyance with security certificate for universe.have-host.com

Every time I get email it comes up with expired certificate and or a
warning that the certificate belongs to another site this started 28 March.

I’ve left a message with James, nearly 24 hours ago and heard nothing,
is anyone else having problems or got an answer?


Best wishes Peter

Peter Tucker . Oxford, UK . email@hidden

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#2

I had a certificate warning today also when I happened to need to use Mail, not my usual email client. Cleared ok so got on with what I needed without any issue.
Also ftp’d some files up to my HH account and there was a bit of sticky ness but generally ok.

hope you get a reply - annoying when you have to wait.

s

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#3

I get that when sending. I just say show certificate or whatever and then check the box to Always Trust. Authorize with my admin info on my computer and I don’t see it again.

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#4

OK, but why do we have to [glibly] “Trust” an invalid certificate and
one that’s out of date?
There is a reason these certificates are issued in the first place! AND
this is the only server that presents me with these warnings.

Snipped from the Oxford Mac User Group’s [http://oxmug.org] resident
Security Expert:

Reflections on Trusting Trust

Just to follow up on this - a highly relevant story - counterfeit SSL
web server certificates:

“Extremely sophisticated hackers, possibly from the Iranian government
or another state-sponsored actor, broke into the servers of a web
authentication authority and counterfeited certificates for Google mail
and six other sensitive addresses […] other web addresses that were
targeted included www.google.com, login.yahoo.com, login.skype.com,
addons.mozilla.com, and Microsoft’s login.live.com.”

Be very frightened.

Joe Muscara mailto:email@hidden
2 April 2011 14:09

I get that when sending. I just say show certificate or whatever and
then check the box to Always Trust. Authorize with my admin info on my
computer and I don’t see it again.

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

seoras mailto:email@hidden
1 April 2011 22:06

I had a certificate warning today also when I happened to need to use
Mail, not my usual email client. Cleared ok so got on with what I
needed without any issue.
Also ftp’d some files up to my HH account and there was a bit of
sticky ness but generally ok.

hope you get a reply - annoying when you have to wait.

s

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options


Best wishes Peter

Peter Tucker . Oxford, UK . email@hidden

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#5

You’re right, out of date is an issue and should be fixed.

However, security certificates can only be issued for one host and hostname. Therefore, the only way for me to have one that matches t2studios.com is to spend mucho dinero per annum. IIRC, I can’t get one generically for *.t2studios.com to match www., mail., etc. Authorizing universe.have-host.com gives me a secure connection without all that hassle and cost.

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#6

Just to clarify, you can get a “wildcard” certificate for
*.t2studios.com but it costs serious coin and is a pain in the ass to
install and configure. Count on needing to become root on your server,
something no shared hosting provider will let you do for any reason.

When you’re on a shared host, you generally have two choices in
security, both driven by your hosting provider: a) Use the host’s
certificate, usually for cheap or free, or b) Buy a certificate and
have the host install it for you. Your host may require you to do
option b through them, and not let you go to Big Al’s Security Mart
for the best deals.

But certificates have dropped in price quite dramatically. The last
time I needed one it cost me $79 for the year, and my host installed
it for me as part of that price. This was at RimuHosting, who I do
recommend if you need a “cheap and cheerful” VPS hosting provider. (I
also looked into buying a certificate directly, and found that it
would cost me the same $79, so Rimu are likely getting a “reseller’s
rate” and that’s how they afford this.)

Walter

On Apr 3, 2011, at 8:54 AM, Joe Muscara wrote:

You’re right, out of date is an issue and should be fixed.

However, security certificates can only be issued for one host and
hostname. Therefore, the only way for me to have one that matches
t2studios.com is to spend mucho dinero per annum. IIRC, I can’t get
one generically for *.t2studios.com to match www., mail., etc.
Authorizing universe.have-host.com gives me a secure connection
without all that hassle and cost.

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#7

Thanks, Walter. It’s been a while since I’ve looked into the details of buying one.

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#8

RimuHosting

Are they SF based by any chance? :slight_smile:

Unfortunate name choice!

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#9

Oh, I agree. I’ve never had a client ask that question, thank
goodness, but sheesh!

Original company is from Australia or somewhere else in that corner of
the globe, and they also have servers in Texas.

Walter

On Apr 3, 2011, at 11:35 AM, DeltaDave wrote:

RimuHosting

Are they SF based by any chance? :slight_smile:

Unfortunate name choice!

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#10

Lets be realistic though - how many Clients, when asked, would have a clue who hosts their site!

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#11

All of mine, because I make them pay directly. I try to stay out of
the middle of that. I have enough trouble sometimes getting paid on
time that I don’t want to be in the banking business for my clients.

Walter

On Apr 3, 2011, at 12:08 PM, DeltaDave wrote:

Lets be realistic though - how many Clients, when asked, would have
a clue who hosts their site!

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#12

Sound advice as always…

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

#13

BTW 3 days + still no reply from HH!

Peter Tucker, Oxford UK - but mobile somewhere

On 3 Apr 2011, at 17:23, DeltaDave email@hidden wrote:

Sound advice as always…

D

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

offtopic mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options