Adguard & HTTPS websites & certificates

  • Thread starter Thread starter Deleted member 2913
  • Start date Start date
D

Deleted member 2913

Thread author
Umbra said:
No idea yet, it didn't happened to me, yet
Click to expand...
Can you test the above mentioned scenario with AX64 website & Adguard Desktop HTTPS filtering enabled?
Go to AX64 website & click "Tour Features" - In browser, I get -
Your connection is not private
Attackers might be trying to steal your information from ax64.com (for example, passwords, messages, or credit cards).
NET::ERR_CERT_DATE_INVALID
 
  • Like
Reactions: Logethica, DardiM and XhenEd
I tried with Chrome 64 Bits installed & Adguard Desktop.
AX64 website - "Tour Features" link not working And "Feedback & Support" link working.

Without Adguard -
Feedback & Support - Page is Secure, Valid Certs, Original Certs
Tour Features - Page is Insecure, Invalid Certs, Original Certs
Your connection is not private
Attackers might be trying to steal your information from ax64.com (for example, passwords, messages, or credit cards).
NET::ERR_CERT_DATE_INVALID

With Adguard -
Feedback & Support - Page is Secure, Valid Certs, Adguard Certs
Tour Features - Page is Insecure, Valid Certs, (there is no "view certs" tab)
This site cant provide a secure connection
ax64.com sent an invalid response.
ERR_SSL_PROTOCOL_ERROR
 
  • Like
Reactions: Venustus, Logethica, DardiM and 1 other person
Yash Khan said:
I tried with Chrome 64 Bits installed & Adguard Desktop.
AX64 website - "Tour Features" link not working And "Feedback & Support" link working.

Without Adguard -
Feedback & Support - Page is Secure, Valid Certs, Original Certs
Tour Features - Page is Insecure, Invalid Certs, Original Certs
Your connection is not private
Attackers might be trying to steal your information from ax64.com (for example, passwords, messages, or credit cards).
NET::ERR_CERT_DATE_INVALID

With Adguard -
Feedback & Support - Page is Secure, Valid Certs, Adguard Certs
Tour Features - Page is Insecure, Valid Certs, (there is no "view certs" tab)
This site cant provide a secure connection
ax64.com sent an invalid response.
ERR_SSL_PROTOCOL_ERROR
Click to expand...
Problem is not adguard. The ax certificate expired on 30.8.16. When you visit those locations you mentioned it goes over https so to avoid getting scammed it gives you the msg.
 
  • Like
Reactions: Dirk41, Venustus, Logethica and 5 others
SHvFl said:
Problem is not adguard. The ax certificate expired on 30.8.16. When you visit those locations you mentioned it goes over https so to avoid getting scammed it gives you the msg.
Click to expand...
I didn't meant prob is Adguard.

I just wanted to know if website certs expired, what users will get to see in the browser normal i.e without Adguard & with Adguard...So did the little test.
 
  • Like
Reactions: Venustus, Logethica, DardiM and 1 other person
SHvFl said:
Problem is not adguard. The ax certificate expired on 30.8.16. When you visit those locations you mentioned it goes over https so to avoid getting scammed it gives you the msg.
Click to expand...
Why some links on AX64 website have proper certs i.e not expired And some links have expired certs?
Certs are not for whole website/links, etc... i.e website require multiple certs?
 
  • Like
Reactions: Logethica, DardiM, Cats-4_Owners-2 and 1 other person
  • Like
Reactions: Venustus, Logethica, frogboy and 3 others
Yash Khan said:
Both the links on AX64 website i.e "Tour Features" & "Feedback & Support" are HTTPS..."Tour Features" has invalid/expired certs & "Feedback & Support" has valid/proper certs.
Click to expand...
Feedback and support is not the same. That page has a different one issued to cloudflaressl.com.
I don't know why they do this but they must have a reasoning. You could contact them and tell them.
 
Last edited:
  • Like
Reactions: Dirk41, Logethica, DardiM and 1 other person
Yash Khan said:
Can you test the above mentioned scenario with AX64 website & Adguard Desktop HTTPS filtering enabled?
Go to AX64 website & click "Tour Features" - In browser, I get -
Your connection is not private
Attackers might be trying to steal your information from ax64.com (for example, passwords, messages, or credit cards).
NET::ERR_CERT_DATE_INVALID
Click to expand...

No issues here.
 

Attachments

  • Tour.jpg
    Tour.jpg
    382.8 KB · Views: 633
  • Like
Reactions: Dirk41, Deleted member 2913, Logethica and 2 others
Umbra,

Is the above without Adguard Desktop?

Attached is the screenshot normal i.e without Adguard Desktop here.
 

Attachments

  • Tour.png
    Tour.png
    41.4 KB · Views: 667
  • Like
Reactions: Logethica
When you click from Google search page, it gives you HTTP link of the page And if you go to ax64.com & then click tour product, you get HTTPS link & privacy error as certs invalid now, right?
 
  • Like
Reactions: Logethica
Yash Khan said:
When you click from Google search page, it gives you HTTP link of the page And if you go to ax64.com & then click tour product, you get HTTPS link & privacy error as certs invalid now, right?
Click to expand...
Correct.
When you click the tour link directly from google search page it takes you to an http site. When you visit the main ax page and then click tour it takes you to an https site which has the expired certificate.

Already reported it to ax btw. Maybe they will fix it.
 
  • Like
Reactions: Dirk41, Logethica, Venustus and 1 other person
SHvFl said:
Correct.
When you click the tour link directly from google search page it takes you to an http site. When you visit the main ax page and then click tour it takes you to an https site which has the expired certificate.
Click to expand...

I visited the tour from the within the site with adguard desktop.
 
  • Like
Reactions: Logethica and SHvFl
Umbra said:
i use Chrome, maybe the reason.
Click to expand...
I tried -
Chrome 64 Bits Installed
Internet Explorer
Vivaldi 64 Bits Portable
Cyberfox 64 Bits Portable
Win 10 64 Pro

AX64 (Tour & Features)
Normal i.e Without Adguard Desktop installed And from within AX64 website, I get "Privacy Error - credit card, etc info" & "err invalid certs" in all the browsers.
With Adguard Desktop installed (HTTPS filtering enabled But websites with EV certs filtering disabled), I get "this website cannot provide secure connection" & "ssl protocol error" in all the browsers.

The screenshot you previously posted looks like HTTP instead of HTTPS i.e the addressbar has grey/black little circle before website address And I guess that circle means HTTP & not HTTPS website, right?
 
  • Like
Reactions: Logethica and SHvFl
You must log in or register to reply here.

You may also like...