World Community Grid - View Thread - wcgrid.org security certificate

World Community Grid Forums

Category: Support

Forum: Website Support

Thread: wcgrid.org security certificate

Quick Go »

No member browsing this thread

Thread Status: Active
Total posts in this thread: 6

[ ]

Author

This topic has been viewed 2421 times and has 5 replies

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


wcgrid.org security certificate

I hadn't really noticed that wcgrid.org was a shortened domain name that could be used to get to worldcommunitygrid.org until I noticed it on a snurky signature. However, when I tried it I discovered that it doesn't work well with HTTPS because the security certificate doesn't specify that domain name:

wcgrid.org uses an invalid security certificate.
The certificate is only valid for the following names:
*.worldcommunitygrid.org, worldcommunitygrid.org
Error code: SSL_ERROR_BAD_CERT_DOMAIN

With some browsers now pushing people towards HTTPS whenever it's available, shouldn't this be fixed?

[Aug 3, 2018 8:19:03 AM]

uplinger
Former World Community Grid Tech
Joined: May 23, 2005
Post Count: 3952
Status: Offline
Project Badges:

10 year badge for Human Proteome Folding

2 year badge for Human Proteome Folding - Phase 2

45 day badge for Help Cure Muscular Dystrophy

2 year badge for Discovering Dengue Drugs - Together

20 year badge for Nutritious Rice for the World

2 year badge for The Clean Energy Project

5 year badge for Help Fight Childhood Cancer

2 year badge for Influenza Antiviral Drug Search

2 year badge for Help Cure Muscular Dystrophy - Phase 2

2 year badge for Discovering Dengue Drugs - Together - Phase 2

10 year badge for The Clean Energy Project - Phase 2

5 year badge for Computing for Clean Water

10 year badge for Drug Search for Leishmaniasis

20 year badge for GO Fight Against Malaria

2 year badge for Computing for Sustainable Water

50 year badge for Mapping Cancer Markers

50 year badge for Uncovering Genome Mysteries

20 year badge for Outsmart Ebola Together

100 year badge for FightAIDS@Home - Phase 2

20 year badge for Smash Childhood Cancer

50 year badge for Microbiome Immunity Project

10 year badge for Africa Rainfall Project

50 year badge for OpenPandemics - COVID-19


Re: wcgrid.org security certificate

Greetings,

We have purchased the domains that are similar to worldcommunitygrid.org to help prevent domain squatting. However we recommend that everyone uses the full domain as it has the certificate associated with World Community Grid. If you use wcgrid.org, it will redirect you to the https://www.worldcommunitygrid.org site. All external usages of wcgrid.org should use http and not https.

Thanks,
-Uplinger

[Aug 7, 2018 3:48:36 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: wcgrid.org security certificate

All external usages of wcgrid.org should use http and not https.

That's strange thinking. My version is "The whole web should use https and http should be banned."

[Aug 7, 2018 5:33:05 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: wcgrid.org security certificate

All external usages of wcgrid.org should use http and not https.

That's strange thinking. My version is "The whole web should use https and http should be banned."

External security certs are not free if you want them signed by a trusted source.

[Aug 7, 2018 10:20:23 PM]

KerSamson
Master Cruncher
Switzerland
Joined: Jan 29, 2007
Post Count: 1684
Status: Offline
Project Badges:

5 year badge for Human Proteome Folding - Phase 2

180 day badge for Help Cure Muscular Dystrophy

5 year badge for Nutritious Rice for the World

90 day badge for The Clean Energy Project

10 year badge for Help Fight Childhood Cancer

20 year badge for Help Cure Muscular Dystrophy - Phase 2

5 year badge for The Clean Energy Project - Phase 2

5 year badge for Drug Search for Leishmaniasis

2 year badge for GO Fight Against Malaria

100 year badge for Mapping Cancer Markers

10 year badge for Uncovering Genome Mysteries

50 year badge for Outsmart Ebola Together

5 year badge for FightAIDS@Home - Phase 2

10 year badge for Microbiome Immunity Project

20 year badge for Africa Rainfall Project


Re: wcgrid.org security certificate

External security certs are not free if you want them signed by a trusted source.

What about Let's Encrypt?
Cheers,
Yves

----------------------------------------

Décrypthon team progress - KerSamson's contribution

[Aug 7, 2018 10:56:36 PM]

uplinger
Former World Community Grid Tech
Joined: May 23, 2005
Post Count: 3952
Status: Offline
Project Badges:


Re: wcgrid.org security certificate

LetsEncrypt is a great service, however, they recommend updating your certificates every 60 days, We have certificates that are valid for 3 years. They are really designed for single server sites and it takes quite a bit of work to correctly setup certificates with load balancers. Also, since this is a production product, we require a higher level of support that LetsEncrypt is not able to provide.

Thanks,
-Uplinger

[Aug 8, 2018 3:38:43 PM]

[ ]