Insecure HTTPS site? SSL certificate does not do the trick

Others 2021-03-31 15:52:08 views: null

The SSL certificate plays a vital role in protecting the data transmission of the website. Its existence prevents the information and data left by the website visitors when they access the browser from being stolen, tampered with and monitored, so that visitors can feel at ease when they visit the website. , Very at ease, so that the website is transformed from a plaintext HTTP to a data-encrypted https site. However, users have found that when accessing some https sites, the browser still prompts that it is not safe. Is it because of the SSL certificate? Is it because the SSL certificate can no longer protect our security? The editor summarized the following reasons.

1. The SSL certificate does not match the website domain name

This situation is usually that the type of SSL certificate you applied for does not match the domain name. If your personal website applies for an enterprise certificate, the enterprise certificate requires enterprise certification. When applying for a personal website, it will be provided to some less rigorous SSL certificate providers. It is a fake business certificate, which will cause the SSL certificate to not match the website domain name.

2, SSL certificate authority is not trusted

Many illegal certificate authorities are not trusted by browsers due to misuse of digital certificates, or SSL certificates that are late to the root are not compatible with some old browsers. Therefore, when we choose an SSL certificate, try not to apply for a free SSL certificate for temporary gains, not to mention that it takes more manpower and material resources to apply. There is no free lunch in the world. If you abuse the free SSL certificate The loss of our company's reputation and property is not worth the loss.

3. The SSL certificate has expired or been revoked

After the SSL certificate expires or is revoked, the browser will remind you of insecurity, which requires you to renew or re-apply for the SSL certificate.

4. The website contains resources such as pictures or CSS styles referenced by http

If you use resources such as pictures or CSS styles referenced by http, even if your website has an SSL certificate installed, the browser will prompt you that the link established with the website is not completely secure (as shown in the figure below). In this case, you only need to re-reference these pictures or resources with https.

Unsafe reminder

All in all, when you find that your https site is prompted to be insecure, it is recommended to troubleshoot the problem from the above aspects.

Guess you like

Origin blog.csdn.net/qq_43422918/article/details/113850797
Recommended
Ranking
ElasticSearch-- data modeling best practices
Permission Maintenance - Shadow User Backdoor
Refactor the code using MVP mode
Quantitative investment-fundamental model-PVC multi-factor model
Spark Big Data Processing Lecture Notes 3.2 Mastering RDD Operators
Blazor page components (2)
Erlernen von Kenntnissen zur Android-Entwicklung – Kodierung, Verschlüsselung, Hash, Serialisierung und Zeichensätze
About Qi high in JAVA study notes SORM summary detailed personal explanation
Will you calculate the accuracy of the rope displacement sensor in the measurement?
OPENJTAG debugging learning (3): debugging using the gdb command line
Daily
More
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)

Code World

© 2018 codetd.com