Penny Arcade Forums H.Q. Reception Desk
The new forums will be named Coin Return (based on the most recent vote)! You can check on the status and timeline of the transition to the new forums here.
The Guiding Principles and New Rules document is now in effect.

Unmatched security certificate for alabasterslim.com

Inquisitor77Inquisitor77 2 x Penny Arcade Fight Club ChampionA fixed point in space and timeRegistered User regular
in H.Q. Reception Desk
This issue pops up for things like Bitdefender whenever someone has a Steam signature.

See an example here:
6bk8sus48n6r.png

View source shows an unsecured http link to alabasterslim.com:
<div class="Signature UserSignature userContent "><a href="http://steamcommunity.com/profiles/76561197992401435&quot; rel="nofollow"><img src="http://alabasterslim.com/76561197992401435/steam_sig.png&quot; alt="steam_sig.png" class="embedImage-img importedEmbed-img"></img></a></div>


I feel like this is something that has popped up before, but can't find the old thread.

Posts

  • BahamutZEROBahamutZERO Registered User regular
    edited October 2022
    Yeah, people hotlink dynamically created images from that URL that show steam game API information in their signatures, and links from there sometimes set off net guard programs for whatever reason. Nothing the PA site can do about it. I'm not sure if that site's owner posts here.

    BahamutZERO on
    BahamutZERO.gif
  • SmokeStacksSmokeStacks Registered User regular
    BahamutZERO wrote: »
    I'm not sure if that site's owner posts here.

    He does. @Suds

  • SudsSuds Registered User regular
    Site owner here. Might be when the webserver reboots or is offline. The certificate should be good but I can double check next week.

    Drovek’s signature is messed up. He needs to update his link. His doesn’t display since the url isn’t valid.

    I haven’t seen issues with others. Does mine in this post also have the same issue?

    camo_sig2.png
  • Inquisitor77Inquisitor77 2 x Penny Arcade Fight Club Champion A fixed point in space and timeRegistered User regular
    Yours does not. I haven't been tracking who specifically makes it pop. In randomly clicking threads I also ran across a similar issue with sc2sig.com , but no other alabasterslim.com sigs that I could see.

    May just be one of those things where people with bad/outdated signatures will have the issue in perpetuity. Not sure what the solution is other than to have some kind of signature scanning/validation...

    FYI @Drovek see Suds's comment above.

  • BahamutZEROBahamutZERO Registered User regular
    You could hypothetically also use an adblocking plugin to block loading specific signature image URLs that give you trouble

    BahamutZERO.gif
  • DrovekDrovek Registered User regular
    edited October 2022
    Huh, odd. My sig was actually using http instead of https (not sure if that was the original original link.)

    My guess is that at some point some redirect from http -> https screws up with cert validation.

    Still, thanks for the heads up. It should be hopefully fixed now.

    EDIT: Oh, it was also linking to www.alabasterslim.com. So maybe the new cert doesn't include that record?

    Drovek on
    steam_sig.png( < . . .
  • SudsSuds Registered User regular
    I’ll update my cert to include www

    camo_sig2.png
  • EchoEcho ski-bap ba-dapModerator, Administrator admin
    I come to this place to escape work.

  • SudsSuds Registered User regular
    Added a redirect to www goes to the base domain. That should fix any issues.

    camo_sig2.png
  • SudsSuds Registered User regular
    Currently having issues with my domain registrar causing issues. I’m switching to another service but it will be a few days.

    Shutting the webserver down until then

    camo_sig2.png
Sign In or Register to comment.
Penny Arcade Forums H.Q. Reception Desk