website fails

Forums › Desktop computing › website fails

nunz

1421 posts

Uber Geek
+1 received by user: 314
Inactive user

#229060 5-Feb-2018 21:20

So many websites are trying to do pop up log ins, sub screens and a myriad of other fancy but useless things now that they are becoming unusable. Trying to log in while sub menus disappear as soon as you move a mouse, ajax calls not completing, captcha and other drop downs that have no info in them as the latency or servers are so bad, little snippets blocking the button you need to click ( e.g. get help screens side sliders) . The list goes on - and this type of experience is getting worse all the time.

I am presenting Gem visa as my first nomination in the worst log in / site UI experiences hall of shame. Any others?

GEM VISA.

Start here and try to log in as a gem visa user: https://www.gemfinance.co.nz/contact-us/Having the worst log in experience Ive seen in a while ( three log in screens to get to the point where you put in user name and password) - which then does a pop up that disappears when you try to put the mouser over it ...

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

1 | 2

11093 posts

Uber Geek
+1 received by user: 6070

Trusted

Lifetime subscriber

#1952178 5-Feb-2018 21:38

They then present a certificate that is so last year -- errrrrr so year before last year.

Hmm, that's interesting:

djtOtago

1181 posts

Uber Geek
+1 received by user: 605

#1952186 5-Feb-2018 21:47

At https://online.gemvisa.co.nz/access/login I get an up to date certificate

Behodar

11093 posts

Uber Geek
+1 received by user: 6070

Trusted

Lifetime subscriber

#1952188 5-Feb-2018 21:49

Interestingly I get the same date as nunz on my other machine (which admittedly is running an esoteric browser on an esoteric OS; NetSurf on Risc OS).

hio77

'That VDSL Cat'
13036 posts

Uber Geek
+1 received by user: 3896

ID Verified

Trusted

Lizard Networks

Subscriber

#1952192 5-Feb-2018 21:59

up to date here...

#include <std_disclaimer>

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

djtOtago

1181 posts

Uber Geek
+1 received by user: 605

#1952193 5-Feb-2018 21:59

Wonder if it is a Server Name Indication (SNI) problem. Older OSs and browsers don't support it? Picking up an old certificate for the root / default web site instead of the actual site being served. Would also explain why nunz sees a certificate for the www.gemvisa.co.nz site when visiting the online.gemvisa.co.nz site.

https://en.wikipedia.org/wiki/Server_Name_Indication

hio77

'That VDSL Cat'
13036 posts

Uber Geek
+1 received by user: 3896

ID Verified

Trusted

Lizard Networks

Subscriber

#1952194 5-Feb-2018 22:09

Testing on older xp machine...

being as old as it is, SSL isn't supported in IE properly so can't test there.

#include <std_disclaimer>

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

HP

Shop now for HP laptops and other devices (affiliate link).

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41029

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1952204 5-Feb-2018 22:43

Are you sure your machine doesn't have some malware? Is there a proxy in your network? Something doing a MITM attack?

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

yitz

2238 posts

Uber Geek
+1 received by user: 594

#1952208 5-Feb-2018 22:56

Yeah you might want to rule out ESET, by disabling in its preferences 'add root certificate to browsers'.

Also don't see any pop up log in windows.

sbiddle

30853 posts

Uber Geek
+1 received by user: 9996

Retired Mod

Trusted

Biddle Corp

Lifetime subscriber

#1952259 6-Feb-2018 07:19

No such issues here on multiple machines and connections.

My pick would be something doing MITM that is causing this. I also have to wonder if it's the same thing causing your issues with Spark that you posted about in the other thread.

Linux

12173 posts

Uber Geek
+1 received by user: 8469

Trusted

Lifetime subscriber

#1952260 6-Feb-2018 07:23

Try scanning pc with malwarebytes

Linux

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41029

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1952285 6-Feb-2018 09:38

What ESET version are you running? Try disabling the ESET scanning for website certificates and security. They could be using their own expired certificate or (more likely) it's an old version.

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

Geekzone

Want to support Geekzone and browse the site without the ads? Subscribe to Geekzone now (monthly, annual and lifetime options).

TLD

908 posts

Ultimate Geek
+1 received by user: 263

#1952294 6-Feb-2018 10:01

nunz:

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

Would you believe that the entire Adobe forums went down for about 12 hours in early January this year, because they forgot to renew their security certificates? They rent the software from Jive, but apparently the way it is structured means that someone at Adobe gets the reminders, and they are bombarded with ever more reminders the closer it gets to running out. I can't give you the link to the discussion about it as it on a private forum (called The Back Room), but this is from that discussion.

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...

Trevor Dennis
Rapaura (near Blenheim)

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41029

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1952296 6-Feb-2018 10:06

TLD:

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...

Too bad Chrome is going to start complaining about Symantec issued-certificates soon. Also too bad Symantec sold the certificate business. They're in for a ride if they're that disorganised...

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

sbiddle

30853 posts

Uber Geek
+1 received by user: 9996

Retired Mod

Trusted

Biddle Corp

Lifetime subscriber

#1952298 6-Feb-2018 10:07

Quick Google search shows other ESET users with the same issue https://forum.eset.com/topic/11526-encrypted-network-traffic-untrusted-certificate/

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41029

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1952300 6-Feb-2018 10:11

Reading that thread it says the ESET certificate is not compatible with the Firefox VPN plugin or other VPN services. Are you using that?

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

1 | 2