Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsDesktop computingwebsite fails
nunz

1421 posts

Uber Geek
Inactive user


#229060 5-Feb-2018 21:20
Send private message

So many websites are trying to do pop up log ins, sub screens and a myriad of other fancy but useless things now that they are becoming unusable. Trying to log in while sub menus disappear as soon as you move a mouse, ajax calls not completing, captcha and other drop downs that have no info in them as the latency or servers are so bad, little snippets blocking the button you need to click ( e.g. get help screens side sliders) . The list goes on - and this type of experience is getting worse all the time.

 

I am presenting Gem visa as my first nomination in the worst log in / site UI experiences hall of shame. Any others?

 

GEM VISA.

 

Start here and try to log in as a gem visa user: https://www.gemfinance.co.nz/contact-us/Having the worst log in experience Ive seen in a while ( three log in screens to get to the point where you put in user name and password) - which then does a pop up that disappears when you try to put the mouser over it ...

 

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

 

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
Behodar
10513 posts

Uber Geek

Trusted
Lifetime subscriber

  #1952178 5-Feb-2018 21:38
Send private message

They then present a certificate that is so last year -- errrrrr so year before last year.

 

Hmm, that's interesting:

 



djtOtago
1153 posts

Uber Geek


  #1952186 5-Feb-2018 21:47
Send private message

At https://online.gemvisa.co.nz/access/login I get an up to date certificate 

 

 

 

Behodar
10513 posts

Uber Geek

Trusted
Lifetime subscriber

  #1952188 5-Feb-2018 21:49
Send private message

Interestingly I get the same date as nunz on my other machine (which admittedly is running an esoteric browser on an esoteric OS; NetSurf on Risc OS).



hio77
12999 posts

Uber Geek

ID Verified
Trusted
Lizard Networks

  #1952192 5-Feb-2018 21:59
Send private message

up to date here...




#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 

 

djtOtago
1153 posts

Uber Geek


  #1952193 5-Feb-2018 21:59
Send private message

Wonder if it is a Server Name Indication (SNI) problem. Older OSs and browsers don't support it? Picking up an old certificate for the root / default web site instead of the actual site being served. Would also explain why nunz sees a certificate for the www.gemvisa.co.nz site when visiting the online.gemvisa.co.nz site.

 

https://en.wikipedia.org/wiki/Server_Name_Indication 

 

 

hio77
12999 posts

Uber Geek

ID Verified
Trusted
Lizard Networks

  #1952194 5-Feb-2018 22:09
Send private message

Testing on older xp machine...

 

 

being as old as it is, SSL isn't supported in IE properly so can't test there.




#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 

 

freitasm
BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1952204 5-Feb-2018 22:43
Send private message

Are you sure your machine doesn't have some malware? Is there a proxy in your network? Something doing a MITM attack?




Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

 
 
 
 

Move to New Zealand's best fibre broadband service (affiliate link). Free setup code: R587125ERQ6VE. Note that to use Quic Broadband you must be comfortable with configuring your own router.
yitz
2082 posts

Uber Geek


  #1952208 5-Feb-2018 22:56
Send private message

Yeah you might want to rule out ESET, by disabling in its preferences 'add root certificate to browsers'.

 

 

Also don't see any pop up log in windows.

sbiddle
30853 posts

Uber Geek

Retired Mod
Trusted
Biddle Corp
Lifetime subscriber

  #1952259 6-Feb-2018 07:19
Send private message

No such issues here on multiple machines and connections.

 

My pick would be something doing MITM that is causing this. I also have to wonder if it's the same thing causing your issues with Spark that you posted about in the other thread.

 

 

Linux
11434 posts

Uber Geek

Trusted
Lifetime subscriber

  #1952260 6-Feb-2018 07:23
Send private message

Try scanning pc with malwarebytes

Linux

freitasm
BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1952285 6-Feb-2018 09:38
Send private message

What ESET version are you running? Try disabling the ESET scanning for website certificates and security. They could be using their own expired certificate or (more likely) it's an old version.




Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

TLD

TLD
902 posts

Ultimate Geek


  #1952294 6-Feb-2018 10:01
Send private message

nunz:

 

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

 

 

Would you believe that the entire Adobe forums went down for about 12 hours in early January this year, because they forgot to renew their security certificates?  They rent the software from Jive, but apparently the way it is structured means that someone at Adobe gets the reminders, and they are bombarded with ever more reminders the closer it gets to running out.  I can't give you the link to the discussion about it as it on a private forum (called The Back Room), but this is from that discussion.

 

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...





Trevor Dennis
Rapaura (near Blenheim)

freitasm
BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1952296 6-Feb-2018 10:06
Send private message

TLD:

 

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...

 

 

Too bad Chrome is going to start complaining about Symantec issued-certificates soon. Also too bad Symantec sold the certificate business. They're in for a ride if they're that disorganised...




Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

sbiddle
30853 posts

Uber Geek

Retired Mod
Trusted
Biddle Corp
Lifetime subscriber

  #1952298 6-Feb-2018 10:07
Send private message

Quick Google search shows other ESET users with the same issue https://forum.eset.com/topic/11526-encrypted-network-traffic-untrusted-certificate/

 

 

freitasm
BDFL - Memuneh
79309 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1952300 6-Feb-2018 10:11
Send private message

Reading that thread it says the ESET certificate is not compatible with the Firefox VPN plugin or other VPN services. Are you using that?




Please support Geekzone by subscribing, or using one of our referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync 

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright