https access to www.mersenne.org failed

LLL · 2008-12-24, 16:04

Some few days ago I successfully visited https://www.mersenne.org/ This access method is preferable because of more secure way of password transmittion. Now I have get following error text instead of usual site content: Directory Listing Denied This Virtual Directory does not allow contents to be listed. This is a temporary problem?

cheesehead · 2008-12-25, 05:00

The message I just got when trying the same https (with IE6) was:

There is a problem with this website's security certificate.

The security certificate presented by this website was not issued by a trusted certificate authority.

retina · 2008-12-25, 05:12

I get this:

Code:

Secure Connection Failed

www.mersenne.org uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.

(Error code: sec_error_unknown_issuer)

Firefox 3.0.5

99.94 · 2008-12-25, 06:38

And I get this:
Directory Listing Denied

This Virtual Directory does not allow contents to be listed.
{Safari 3.2.1}

Mini-Geek · 2008-12-25, 13:59

The two error messages cheesehead and retina posted are just the browsers complaining about the security. I'm using FF and when I ignore those and get to the page, I see the same "Directory Listing Denied This Virtual Directory does not allow contents to be listed." that the OP and 99.94 see.

cheesehead · 2008-12-26, 02:21

Now, when I use Firefox 3.0.5, I get a "Page Load Error" and

"Secure Connection Failed

www.mersenne.org uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.

(Error code: sec_error_unknown_issuer)"

At the bottom is:

"Or you can add an exception…"

but when I click on that, then click on "Add Exception", I get:

"Legitimate banks, stores, and other public sites will not ask you to do this."

So, the question is:

Is GIMPS a legitimate public site?

I know what you're thinking. "Is that security certificate trustworthy or not?" Well, to tell you the truth, in all this excitement I kind of lost track myself. But being as this is the Internet, where the Department of Homeland Security expects cyber terrorists to launch increasingly sophisticated cyber attacks within the next five years, and you could be the victim of identity theft, or have your system zombied, or have your L-L residue corrupted, you've got to ask yourself one question: Do I feel lucky? Well, do ya, punk?

retina · 2008-12-26, 02:38

Quote:

Originally Posted by cheesehead

"Legitimate banks, stores, and other public sites will not ask you to do this."

So, the question is:

[I]Is GIMPS a legitimate public site?

Well you answered your own question. If it was legitimate then you wouldn't need to add an exception. ;P

Of course the cost of adding an "approved" certificate is not exactly free, so would it be a good use of funds to get one? My thought is that it would not be. There are no valuable assets being protected by it so if someone wants to steal my credit then so be it, they're welcome to it if it means so much to them. Go ahead, make my day!

cheesehead · 2008-12-26, 02:40

Quote:

Originally Posted by retina

Well you answered your own question. If it was legitimate then you wouldn't need to add an exception. ;P

But, do you feel lucky?

Quote:

Of course the cost of adding an "approved" certificate is not exactly free, so would it be a good use of funds to get one? My thought is that it would not be. There are no valuable assets being protected by it so < snip >

But potential security-worried participants could be scared off by the warnings, so maybe a bit of cost (how much?) would be worth it for peace-of-mind. GIMPS's reputation is a valuable asset!

retina · 2008-12-26, 03:23

Quote:

Originally Posted by cheesehead

But, do you feel lucky?

You would need to ask Lucky about that.

mdettweiler · 2008-12-26, 03:43

Hmm...I was just thinking. What good does having an HTTPS connection to mersenne.org do if the password is already sent in the URL? SSL doesn't prevent an attacker from reading the URL, as far as I know.

cheesehead · 2008-12-26, 03:57

Ask the U.S. Department of Homeland Security.

2008-12-24, 16:04	#1
LLL Nov 2008 Russia 4₈ Posts	https access to www.mersenne.org failed Some few days ago I successfully visited https://www.mersenne.org/ This access method is preferable because of more secure way of password transmittion. Now I have get following error text instead of usual site content: Directory Listing Denied This Virtual Directory does not allow contents to be listed. This is a temporary problem?

2008-12-25, 05:00	#2
cheesehead "Richard B. Woods" Aug 2002 Wisconsin USA 17014₈ Posts	The message I just got when trying the same https (with IE6) was: There is a problem with this website's security certificate. The security certificate presented by this website was not issued by a trusted certificate authority. Last fiddled with by cheesehead on 2008-12-25 at 05:44 Reason: Browser type

2008-12-25, 05:12	#3
retina Undefined "The unspeakable one" Jun 2006 My evil lair 2²×1,549 Posts	I get this: Code: Secure Connection Failed www.mersenne.org uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer) Firefox 3.0.5

2008-12-26, 02:21	#6
cheesehead "Richard B. Woods" Aug 2002 Wisconsin USA 2²×3×641 Posts	Now, when I use Firefox 3.0.5, I get a "Page Load Error" and "Secure Connection Failed www.mersenne.org uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)" At the bottom is: "Or you can add an exception…" but when I click on that, then click on "Add Exception", I get: "Legitimate banks, stores, and other public sites will not ask you to do this." So, the question is: Is GIMPS a legitimate public site? I know what you're thinking. "Is that security certificate trustworthy or not?" Well, to tell you the truth, in all this excitement I kind of lost track myself. But being as this is the Internet, where the Department of Homeland Security expects cyber terrorists to launch increasingly sophisticated cyber attacks within the next five years, and you could be the victim of identity theft, or have your system zombied, or have your L-L residue corrupted, you've got to ask yourself one question: Do I feel lucky? Well, do ya, punk? Last fiddled with by cheesehead on 2008-12-26 at 02:36 Reason: with apologies to Clint Eastwood

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
HTTPS	Xyzzy	Forum Feedback	100	2018-09-05 22:45
Why is https://www.mersenne.org so damn buggy?	jxsl13	Information & Answers	2	2017-02-22 03:06
https and www etc etc	Uncwilly	Forum Feedback	1	2012-03-12 20:46
Can an OS config be OK after RAM failed?	RickC	Hardware	8	2010-10-28 03:31
Assertion failed	Andi47	GMP-ECM	2	2009-08-04 14:11

2008-12-25, 06:38	#4
99.94 Dec 2004 The Land of Lost Content 3×7×13 Posts	And I get this: Directory Listing Denied This Virtual Directory does not allow contents to be listed. {Safari 3.2.1}

2008-12-25, 13:59	#5
Mini-Geek Account Deleted "Tim Sorbera" Aug 2006 San Antonio, TX USA 17×251 Posts	The two error messages cheesehead and retina posted are just the browsers complaining about the security. I'm using FF and when I ignore those and get to the page, I see the same "Directory Listing Denied This Virtual Directory does not allow contents to be listed." that the OP and 99.94 see.

2008-12-26, 03:43	#10
mdettweiler A Sunny Moo Aug 2007 USA (GMT-5) 3×2,083 Posts	Hmm...I was just thinking. What good does having an HTTPS connection to mersenne.org do if the password is already sent in the URL? SSL doesn't prevent an attacker from reading the URL, as far as I know.

2008-12-26, 03:57	#11
cheesehead "Richard B. Woods" Aug 2002 Wisconsin USA 2²×3×641 Posts	Ask the U.S. Department of Homeland Security.