Es gibt offensichtlich eine Auseinandersetzung zwischen Symantec und Chrome, die auch die Zertifikate von RapidSSL die teilweise von unseren Kunden bestellt wurden betrifft. Google wird den Zertifkaten von Symantec/RapidSSL in nächster Zeit nicht mehr vertrauen. Dies teilte uns unser Zertifikatsanbieter Trustico in einer Aussendung mit.

In the coming months, SSL Certificates issued by Symantec will no longer be trusted by the Chrome browser, resulting in a degraded website visitor experience. This move follows Google’s decision to stop trusting SSL Certificates issued by Symantec.

Any website that uses an SSL Certificate issued by Symantec before June 2016 or after December 2017 will be warned that their connection is not private and someone could be attempting to steal their information. Chrome users will have to click past the warning before they are able to access the website.
The initial change is scheduled to arrive with Chrome version 66, which will launch worldwide on April 17th.
Further, on October 23rd when Chrome launches build 70, all Symantec SSL Certificates will be listed as untrustworthy
As indicated by Chrome, this incident, while distinct from a previous incident in 2015, was part of a continuing pattern of issues over the past several years that has caused the Chrome team to lose confidence in the trustworthiness of Symantec’s infrastructure, and as a result, the SSL Certificates that have been or will be issued from it.

Heute wurde offensichtlich seitens RapidSSL an alle betroffenen Zertifikatsinhaber eine Warnung ausgesendet, die besagt, dass der Private Key des Zertifikats kompromittiert wurde. Das ist nicht wahr – und Trustico hatte auch die Aussendung dieser E-Mails laut eigenen Angaben nicht beauftragt:

Recently we wrote to you to let you know that we are no longer offering Symantec, GeoTrust, RapidSSL and Thawte branded SSL Certificates. Unfortunately, Google Chrome has decided to distrust these SSL Certificates.
It’s important to us that you SSL Certificate continues to function as normal, and not be compromised by the distrust of the Symantec brands. It is now required that you replace any existing distrusted SSL Certificate with one that is trusted by all web browsers.
Rest assured, there hasn’t been any type of compromise of our systems. However, Symantec brands will cease to function correctly due to Google Chrome’s decision to distrust them.
Recently DigiCert acquired the Symantec SSL Certificate division and subsequently an e-mail was sent by DigiCert to some of our SSL Certificate customers advising of the revocation of their distrusted SSL Certificate. We didn’t authorise this e-mail to be sent and had specifically disabled it within the DigiCert system.
We understand that the e-mail sent about your distrusted SSL Certificates may be confusing. It’s important that you take the opportunity to replace your SSL Certificate as soon as possible. We’re providing free replacement of affected SSL Certificates.
To enable a free replacement, you’ll receive an e-mail report today if you have affected SSL Certificates. Your report will contain a unique coupon code for each affected SSL Certificate. When you replace your distrusted SSL Certificates using your unique coupon codes you’ll receive extra validity free of charge.

Sobald wir die Gutscheine für die Ausstellung der neuen Zertifikate bekommen, werden wir uns daran machen diese Zertifikate von einem anderen Abieter neu ausstellen zu lassen und am Web Server zu installieren. Es wird vermutlich im Zuge dieser Neuausstellung zu Bestätigungsmails kommen, die dann von Ihnen bestätigt werden müssen.

Sollte es Fragen geben, stehen wir jederzeit gerne zur Verfügung.

ccc

CC Communications war einer der ersten Österreichsichen Internet Provider uns ist aus der Mailbox His Master's Voice hervorgegangen die bereits 1987 Online Dienste in Österreich angeboten hat. Wir Betreiben die Internet Dienste für ClubComputer

Letzte Artikel von ccc (Alle anzeigen)

Zur Werkzeugleiste springen