Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




927 posts

Ultimate Geek
+1 received by user: 202

Subscriber

Topic # 229060 5-Feb-2018 21:20
Send private message quote this post

So many websites are trying to do pop up log ins, sub screens and a myriad of other fancy but useless things now that they are becoming unusable. Trying to log in while sub menus disappear as soon as you move a mouse, ajax calls not completing, captcha and other drop downs that have no info in them as the latency or servers are so bad, little snippets blocking the button you need to click ( e.g. get help screens side sliders) . The list goes on - and this type of experience is getting worse all the time.

 

I am presenting Gem visa as my first nomination in the worst log in / site UI experiences hall of shame. Any others?

 

GEM VISA.

 

Start here and try to log in as a gem visa user: https://www.gemfinance.co.nz/contact-us/Having the worst log in experience Ive seen in a while ( three log in screens to get to the point where you put in user name and password) - which then does a pop up that disappears when you try to put the mouser over it ...

 

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

 





nunz

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
6050 posts

Uber Geek
+1 received by user: 940

Trusted
Lifetime subscriber

  Reply # 1952178 5-Feb-2018 21:38
Send private message quote this post

They then present a certificate that is so last year -- errrrrr so year before last year.

 

Hmm, that's interesting:

 


300 posts

Ultimate Geek
+1 received by user: 122

Subscriber

  Reply # 1952186 5-Feb-2018 21:47
Send private message quote this post

At https://online.gemvisa.co.nz/access/login I get an up to date certificate 

 

 

 


 
 
 
 


6050 posts

Uber Geek
+1 received by user: 940

Trusted
Lifetime subscriber

  Reply # 1952188 5-Feb-2018 21:49
Send private message quote this post

Interestingly I get the same date as nunz on my other machine (which admittedly is running an esoteric browser on an esoteric OS; NetSurf on Risc OS).


'That VDSL Cat'
7131 posts

Uber Geek
+1 received by user: 1401

Trusted
Spark
Subscriber

  Reply # 1952192 5-Feb-2018 21:59
Send private message quote this post

up to date here...





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


300 posts

Ultimate Geek
+1 received by user: 122

Subscriber

  Reply # 1952193 5-Feb-2018 21:59
One person supports this post
Send private message quote this post

Wonder if it is a Server Name Indication (SNI) problem. Older OSs and browsers don't support it? Picking up an old certificate for the root / default web site instead of the actual site being served. Would also explain why nunz sees a certificate for the www.gemvisa.co.nz site when visiting the online.gemvisa.co.nz site.

 

https://en.wikipedia.org/wiki/Server_Name_Indication 

 

 


'That VDSL Cat'
7131 posts

Uber Geek
+1 received by user: 1401

Trusted
Spark
Subscriber

  Reply # 1952194 5-Feb-2018 22:09
Send private message quote this post

Testing on older xp machine...

 

 

being as old as it is, SSL isn't supported in IE properly so can't test there.





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


BDFL - Memuneh
59623 posts

Uber Geek
+1 received by user: 10781

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1952204 5-Feb-2018 22:43
One person supports this post
Send private message quote this post

Are you sure your machine doesn't have some malware? Is there a proxy in your network? Something doing a MITM attack?




1034 posts

Uber Geek
+1 received by user: 217


  Reply # 1952208 5-Feb-2018 22:56
Send private message quote this post

Yeah you might want to rule out ESET, by disabling in its preferences 'add root certificate to browsers'.

 

 

Also don't see any pop up log in windows.

25966 posts

Uber Geek
+1 received by user: 5649

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1952259 6-Feb-2018 07:19
One person supports this post
Send private message quote this post

No such issues here on multiple machines and connections.

 

My pick would be something doing MITM that is causing this. I also have to wonder if it's the same thing causing your issues with Spark that you posted about in the other thread.

 

 


21371 posts

Uber Geek
+1 received by user: 1255

Trusted
Lifetime subscriber

  Reply # 1952260 6-Feb-2018 07:23
Send private message quote this post

Try scanning pc with malwarebytes

Linux




Ex JohnR VodafoneNZ 17 years 4 days

BDFL - Memuneh
59623 posts

Uber Geek
+1 received by user: 10781

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1952285 6-Feb-2018 09:38
Send private message quote this post

What ESET version are you running? Try disabling the ESET scanning for website certificates and security. They could be using their own expired certificate or (more likely) it's an old version.





TLD

621 posts

Ultimate Geek
+1 received by user: 133


  Reply # 1952294 6-Feb-2018 10:01
Send private message quote this post

nunz:

 

They then present a certificate that is so last year -- errrrrr so year before last year. Scarily bad for a finance company.

 

 

Would you believe that the entire Adobe forums went down for about 12 hours in early January this year, because they forgot to renew their security certificates?  They rent the software from Jive, but apparently the way it is structured means that someone at Adobe gets the reminders, and they are bombarded with ever more reminders the closer it gets to running out.  I can't give you the link to the discussion about it as it on a private forum (called The Back Room), but this is from that discussion.

 

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...





Trevor Dennis
Rapaura (near Blenheim)

BDFL - Memuneh
59623 posts

Uber Geek
+1 received by user: 10781

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1952296 6-Feb-2018 10:06
Send private message quote this post

TLD:

 

Hosted on Jive's network but the SSL certificate is issued to Adobe, and so the expiry warnings always go to them. It's telling that the forums subdomain has a unique cert issued by DigiCert, whereas everything else on the *.adobe.com network is covered by their Symantec corporate G3 certificate. Almost as if Jive isn't to be trusted with the private key...

 

 

Too bad Chrome is going to start complaining about Symantec issued-certificates soon. Also too bad Symantec sold the certificate business. They're in for a ride if they're that disorganised...





25966 posts

Uber Geek
+1 received by user: 5649

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1952298 6-Feb-2018 10:07
Send private message quote this post

Quick Google search shows other ESET users with the same issue https://forum.eset.com/topic/11526-encrypted-network-traffic-untrusted-certificate/

 

 


BDFL - Memuneh
59623 posts

Uber Geek
+1 received by user: 10781

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1952300 6-Feb-2018 10:11
Send private message quote this post

Reading that thread it says the ESET certificate is not compatible with the Firefox VPN plugin or other VPN services. Are you using that?





 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Fujifilm X beats its best with new top of the range, high-performance camera
Posted 24-Feb-2018 14:05


One million kiwis affected by cybercrime
Posted 24-Feb-2018 13:58


New Zealanders want to engage with government online and via mobile apps
Posted 24-Feb-2018 13:56


Samsung launches Samsung Max
Posted 24-Feb-2018 13:52


CPTPP text and National Interest Analysis released for public scrutiny
Posted 21-Feb-2018 19:43


Foodstuffs to trial digitised shopping trolleys
Posted 21-Feb-2018 18:27


2018: The year of zero-login, smart cars & the biometrics of things
Posted 21-Feb-2018 18:25


Intel reimagines data centre storage with new 3D NAND SSDs
Posted 16-Feb-2018 15:21


Ground-breaking business programme begins in Hamilton
Posted 16-Feb-2018 10:18


Government to continue search for first Chief Technology Officer
Posted 12-Feb-2018 20:30


Time to take Appleā€™s iPad Pro seriously
Posted 12-Feb-2018 16:54


New Fujifilm X-A5 brings selfie features to mirrorless camera
Posted 9-Feb-2018 09:12


D-Link ANZ expands connected smart home with new HD Wi-Fi cameras
Posted 9-Feb-2018 09:01


Dragon Professional for Mac V6: Near perfect dictation
Posted 9-Feb-2018 08:26


OPPO announces R11s with claims to be the picture perfect smartphone
Posted 2-Feb-2018 13:28



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.