Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsOff topicBargainbox Email unsubscribe BS
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3

neb

neb
8906 posts

Uber Geek

Trusted
Lifetime subscriber

  #3069770 30-Apr-2023 22:46
Send private message

Inphinity:

Which is probably worse, because more (most modern) browsers will display a similar error for an invalid cert, than simply being HTTP.

 

 

It's even worse if the site uses HSTS because then there's no way to bypass the stupid warning.

 
 
 
 

You will find anything you want at MightyApe (affiliate link).
SirHumphreyAppleby
2519 posts

Uber Geek


  #3069785 1-May-2023 06:28
Send private message

yitz:

 

Whether the client side browser is correct to upgrade the connection is debatable... the server in question here is certainly not indicating any preference for an upgrade in anyway so is a fully client side decision.

 

 

In this case, no the browser isn't right to upgrade the connection. If it is going to attempt to do such things, it should expect a SN failure and fallback to HTTP.

 

Historically, or more accurately, until recently (SNI), HTTPS only supported a single site per IP. Many servers are still configured as if they can only host one HTTPS site and this will result in a SN error as seen here. Even if the certificate were bypassed, depending on the server and how its configured, it may not provide access to the desired site via HTTPS, only HTTP.

boosacnoodle
651 posts

Ultimate Geek


  #3070199 1-May-2023 23:11
Send private message

yitz:

 

Whether the client side browser is correct to upgrade the connection is debatable... the server in question here is certainly not indicating any preference for an upgrade in anyway so is a fully client side decision.

 

https://brave.com/privacy-updates/22-https-by-default/ 

 

 

There we go. So it's not actually a Bargain Box issue.



ANglEAUT
1942 posts

Uber Geek

Trusted
Lifetime subscriber

  #3070228 2-May-2023 07:54
Send private message

Jase2985:

 

freitasm:

 

Users don't need to know the technical aspects. 

 

 

correct so does it mater that its not HTTPS?

 

 

Yes, it does matter.

 

  • HTTPS is the more secure method of communication.
  • For years we've been telling everybody to look for the green lock in the address bar. Trying to ignore the error & continue works against that & trains the populace to click Yes/OK/Continue on everything
  • It will stop a large portion of the subscribers from completing the unsubscribe process.

     

    • this means the company will waste resources storing customer details & sending out unnecessary emails
    • the subscriber will mark the emails as spam which wastes their time
    • the company will receive a negative rating in the spam filter, requiring them to spend more resources onoptimising their emails, reaching new customers & others

 




Please keep this GZ community vibrant by contributing in a constructive & respectful manner.

boosacnoodle
651 posts

Ultimate Geek


  #3070243 2-May-2023 09:14
Send private message

ANglEAUT:

 

  • It will stop a large portion of the subscribers from completing the unsubscribe process.

 

Hard disagree. I'd wager fewer than 1% of customers of Bargain Box would be using Brave browser.

Jase2985
12348 posts

Uber Geek

ID Verified
Lifetime subscriber

  #3070417 2-May-2023 13:02
Send private message

the question to @getontoit99 is do they get the error in a different browser or is it only happening because the browser is trying to upgrade the link?

 

FWIW i open a bargain box unsubscribe link on my PC, chrome, edge and FF, and it opens fine no errors no nothing from the HTTP link so i suspect the crux of this issue is the OP's browser.

 

 

 

 

getontoit99

75 posts

Master Geek

Lifetime subscriber

  #3070452 2-May-2023 13:47
Send private message

The issue was and is still occuring with Brave, Chrome and Edge on my Windows 10 PC. Here's the link.

 

Unsubscribe

 

I posted this behaviour simply as an observation to share. 

 

Since there seems to such a high level of interest, I just tried the link on my Ubuntu box in Brave.

 

Brave on Linux indicates "Not secure" to the left of the URL and reports that I have unsubscribed (which I had already done). 

 

Unlike Chrome, Brave and Edge on my PC, there was no "Warning Will Robinson" popup like below. (That must show my age😁)

 

 

Thanks all for taking such an interest.

 

 



dm2000
313 posts

Ultimate Geek

ID Verified
Lifetime subscriber

  #3070454 2-May-2023 13:51
Send private message

No issue here on desktop versions of Edge, Chrome, or Firefox

boosacnoodle
651 posts

Ultimate Geek


#3070461 2-May-2023 13:58
Send private message

Nope, works absolutely fine for me using the default settings. I am virtually certain by this point that you have tweaked a security setting somewhere. In all likelihood, Bargain Box haven't noticed. Did you try telling them?

 

To help, I have clicked the Unsubscribe button for you :)

getontoit99

75 posts

Master Geek

Lifetime subscriber

  #3070464 2-May-2023 14:05
Send private message

Yes, I did advise them. Yesterday. Forgot to mention, sorry.

boosacnoodle
651 posts

Ultimate Geek


  #3070465 2-May-2023 14:12
Send private message

What are the certificate details showing if you click through for more info on the padlock?

yitz
1873 posts

Uber Geek


  #3070484 2-May-2023 14:30
Send private message

The issue might be because the modified https: link was copy & pasted from Brave into Chrome/Edge and these browsers may try https: on subsequent navigation attempts. The initial response from navigation to https: sets the HTTP Strict Transport Security (HSTS) header.

SirHumphreyAppleby
2519 posts

Uber Geek


  #3070486 2-May-2023 14:33
Send private message

boosacnoodle:

 

What are the certificate details showing if you click through for more info on the padlock?

 

 

The pertinent information is this...

 

ERR_CERT_COMMON_NAME_INVALID

 

"The certificate is only valid for the following names: a248.e.akamai.net, *.akamaihd-staging.net, *.akamaihd.net, *.akamaized-staging.net, *.akamaized.net"

dacraka
749 posts

Ultimate Geek

ID Verified
Trusted

  #3070490 2-May-2023 14:39
Send private message

So looking up "click.info.bargainbox.co.nz" the DNS is pointing to "click.exacttarget.com.mdc.edgesuite.net".

 

Asking ChatGPT who uses"click.exacttarget.com.mdc.edgesuite.net", results in the following answer:

 

"The domain click.exacttarget.com.mdc.edgesuite.net is a subdomain of edgesuite.net, which is a content delivery network (CDN) used by Akamai Technologies to distribute content across the internet. The subdomain click.exacttarget.com is used by the email marketing platform ExactTarget, which is now a part of Salesforce Marketing Cloud.

 

The purpose of the subdomain click.exacttarget.com.mdc.edgesuite.net is to track clicks on links within emails sent through ExactTarget. When a user clicks on a link in an email, they are redirected to a URL that begins with click.exacttarget.com.mdc.edgesuite.net, which then redirects them to the final destination URL. This process allows ExactTarget to track which links in their emails are being clicked on and how many times, providing valuable data for their clients to measure the effectiveness of their email marketing campaigns."

 

So Bargain Box is using a third party email tracking company (currently Salesforce Marketing Cloud) and either Bargain Box IT has not set up https properly for it or Salesforce doesn't support https for it.

yitz
1873 posts

Uber Geek


  #3070515 2-May-2023 14:47
Send private message

http: link is followed for a web site that does not have TLS/SSL enabled.
User agent/browser unhelpfully insists on using security.
User then proceeds to paste https: link into other browsers giving rise to more errors.

 

/thread

1 | 2 | 3
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Prodigi Technology Services Announces Strategic Acquisition of Conex
Posted 4-Dec-2023 09:33

Samsung Announces Galaxy AI
Posted 28-Nov-2023 14:48

Epson Launches EH-LS650 Ultra Short Throw Smart Streaming Laser Projector
Posted 28-Nov-2023 14:38

Fitbit Charge 6 Review 
Posted 27-Nov-2023 16:21

Cisco Launches New Research Highlighting Gap in Preparedness for AI
Posted 23-Nov-2023 15:50

Seagate Takes Block Storage System to New Heights Reaching 2.5 PB
Posted 23-Nov-2023 15:45

Seagate Nytro 4350 NVMe SSD Delivers Consistent Application Performance and High QoS to Data Centers
Posted 23-Nov-2023 15:38

Amazon Fire TV Stick 4k Max (2nd Generation) Review
Posted 14-Nov-2023 16:17

Over half of New Zealand adults surveyed concerned about AI shopping scams
Posted 3-Nov-2023 10:42

Super Mario Bros. Wonder Launches on Nintendo Switch
Posted 24-Oct-2023 10:56

Google Releases Nest WiFi Pro in New Zealand
Posted 24-Oct-2023 10:18

Amazon Introduces All-New Echo Pop in New Zealand
Posted 23-Oct-2023 19:49

HyperX Unveils Their First Webcam and Audio Mixer Plus
Posted 20-Oct-2023 11:47

Seagate Introduces Exos 24TB Hard Drives for Hyperscalers and Enterprise Data Centres
Posted 20-Oct-2023 11:43

Dyson Zone Noise-Cancelling Headphones Comes to New Zealand
Posted 20-Oct-2023 11:33








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







NordVPN






RSS feeds
Main feed
Forums feed
Copyright
©2002-2023 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Affiliate links
Mighty Ape
Sharesies
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.