LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-25-2010, 02:15 AM   #1
dumluks
LQ Newbie
 
Registered: Apr 2004
Location: Burlington WA
Distribution: SuSE 11.4 x86_64 KDE 4.6
Posts: 16

Rep: Reputation: 1
Why get invalid Security certificate when not accessing site?


Occasionally my machine displays the following warning whenever left to itself for an hour or so.

"www.windowsvistatestdrive.com:443 uses an invalid security certificate.

The certificate expired on 09/16/2009 10:52 AM.

(Error code: sec_error_expired_certificate)"

I am not trying to access this site. It is not always the same url.
My machine, described below, is networked to an XP machine which recently had to be recovered after a viral attack.
Since I am not usually interested I decline to use the certificate and the warning goes away.

What is going on when this happens, please?
Is it related to the attack on the other machine?
What might I do about it?
Many thanks for all help.
--ml
 
Old 01-25-2010, 04:34 AM   #2
Dave_Devnull
Member
 
Registered: May 2009
Posts: 142

Rep: Reputation: 24
Somthing is attempting a secure connection to:

www.windowsvistatestdrive.com:443
{which is, at this moment, related to 209.216.6.102
OrgName: WCP/32POINTS INTERMEDIATE HOLDING COMPANY, INC.
OrgID: WCP32
Address: 1400 Glenarm Place
Address: Suite 100
City: Denver
StateProv: CO
PostalCode: 80202
Country: US
}
and whatever security certificate it was using on the server at 209.216.6.102 is invalid.

As per:
Quote:
www.windowsvistatestdrive.com uses an invalid security certificate.

The certificate expired on 16/09/09 18:52.

(Error code: sec_error_expired_certificate)
The why is pretty easy to answer, the 'who or what is doing this?' would be the part I would want to find out.

When it happens, where do you see the certificate warning? In a browser? On the CLI? Just a totally random desktop popup?
 
Old 01-25-2010, 10:27 AM   #3
dumluks
LQ Newbie
 
Registered: Apr 2004
Location: Burlington WA
Distribution: SuSE 11.4 x86_64 KDE 4.6
Posts: 16

Original Poster
Rep: Reputation: 1
Dave:
Right you are. Poor phrasing of my question. Might have been better if I asked "how does this happen?"

The warning is in its own window. Firefox and Thunderbird are open. Possibly there is an OpenOffice window open. There is no human present requesting this site, or any of the others that have appeared.

Thanks again for help.
--ml
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
localhost:10000 uses an invalid security certificate. Webmin 1.470 Ubuntu 9.04 Clived Ubuntu 10 03-20-2012 08:03 AM
OpenVPN CA Certificate Invalid fukawi2 Linux - Networking 4 05-07-2008 11:01 PM
Webmin error local machine: Recieved invalid certificate sallas Linux - Software 2 06-19-2004 08:59 PM
webmin + invalid certificate rosscopeeko Mandriva 0 03-08-2004 10:22 AM
Curl: How to add remote site to a certificate? mikeshn Programming 0 12-15-2003 07:14 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:08 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration