Safari SSL lockup
Hello everyone,
I have a problem with Safari on Mac OS X when trying to connect to some https websites. Most sites work, but some SSL-secured websites cause Safari's CPU usage to shoot up to 100% on one core.
I can still pull down a menu, click on buttons etc in Safari so it's not crashing, and I can even close the non-loading SSL page. But from the moment I try to access on of these SSL sites Safari's CPU usage stays at 100% and is unable to connect to any site after that. I have to quit Safari and restart it again.
Sometimes I don't even notice that I accidentely tried to visit a SSL-site until my cooling fans start to turn up due to the high processor load. Again, Safari isn't frozen, it just loses the ability to connect to any site.
Any suggestions? I can't access Outlook Web Access which I need for my work so the problem is very inconvenient for me. Most other SSL sites work just fine.
Jim
Yes, I have had success. I was totally unaware of this "New Identity Preference..." command until I saw your post, but using it very explicitly seems to work perfectly.
My setup:
* Imported main certificate --> works everywhere it should, secondary sites fail
* Imported secondary certificate --> main still works, secondary still fails (this is the same as past versions)
In keychain:
* ctrl-click on a certificate, set "New Identity Preference..."
* Type the full DNS name and URL prefix of a secondary site (https://my.site, no need for a more explicit trailing path, though that may also work)
* Select secondary certificate (it's not the default selected, even if you ctrl-clicked on it to bring up the dialog) and confirm
--> secondary site now works with secondary certificate, everything else remains with primary certificate.
Less user friendly than I would like (it requires opening Keychain access and manually pasting URLs, and the errors when using the wrong certificates in Safari are still as cryptic as ever to the average user), but fully functional so far.
Similar Messages
-
Safari SSl Issue with Online Grading Site
I manage a department that offers grading of exams online. Users supply their answers and have the server grade the submissions.
We randomly have an issue where Safari users will have their exams graded incorrectly. Basically failing the student even though they have supplied the correct answers.
When we have them resubmit the same answers in IE for Mac the server correctly grades the exam.
This issue is not consistent. Some exams grade correctly in Safari and some do not.
Any advice would be appreciated.Hmmmm....
via MacWorld:
Nothing in Apple’s ridiculously minimal release notes suggested that this feature existed. But this time, the company’s intransigence in telling you what it has changed in the software you use may have further consequences. How Safari could “know” about these phishing and malware sites raises all kinds of interesting questions. Now we can tell you with reasonable confidence how it all works—but because Apple has not done the same thing, we cannot say with certainty that it is completely private, or that Safari is not sending information about the pages you visit to a third party. -
when Update to 10.7.2 ,I cannot access to any site with ssl connection and fail to open safari and keychain, unless restart computer and login in with Guest account.
OS:10.7.2
Macbook Pro 2010-mid 13inchI also have the same problem, however if I use Firefox or Opera sites with ssl connection work fine. Still, I can't use Google Chrome (ssl), Safari (ssl), the Mac app store (generally), or the iTunes store (generally). Both the iTunes store, Safari and the app store won't respond, and Chrome displays this error: (net::ERR_TIMED_OUT). The problem persists regardless of what network I'm using. Also, when trying to access the keychain or iCloud, the process will not start (will hang). I didn't have these problems at all before updating to 10.7.2.
Sometimes rebooting helps, and sometimes not. If the problem disappears by rebooting, then it only lasts a few minutes before it reappears. It is very frustrating, especially since there doesn't seem to be any obvious or consistent way of which to fix it.
I'm also using a Macbook Pro 13-inch mid 2010. -
Problem with socket factory in RMI over SSL in proxy setup
Hi
The following is the setup I have;
1. I have an application in which the server is running in https mode and I have exported my remote objects using ServerSocketFactory and ClientSocketFactory which will create SSLServerSocket and SSLSocket respectively.
2. When I run my connect a client to this server and invoke some method on any of the remote objects, I get the following exception:
java.lang.NullPointerException
at sun.rmi.transport.tcp.TCPConnection.getOutputStream(Unknown Source)
at sun.rmi.transport.tcp.TCPChannel.createConnection(Unknown Source)
at sun.rmi.transport.tcp.TCPChannel.newConnection(Unknown Source)
at sun.rmi.server.UnicastRef.invoke(Unknown Source)
at com.acme.ems.server.app.main.TestSumImpl_Stub.addOne(Unknown Source)
at com.acme.ems.client.app.tools.EMSHaSftpSettings.okButtonActionPerformed(EMSHaSftpSettings.java:216)
at com.acme.ems.client.app.tools.EMSHaSftpSettings.access$000(EMSHaSftpSettings.java:28)
at com.acme.ems.client.app.tools.EMSHaSftpSettings$1.actionPerformed(EMSHaSftpSettings.java:183)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.Dialog$1.run(Unknown Source)
at java.awt.Dialog$3.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.awt.Dialog.show(Unknown Source)
at com.acme.ems.client.utility.BasicDialog.showContainerInsideDialog(BasicDialog.java:103)
at com.acme.ems.client.app.tools.EMSHaSftpSettings.init(EMSHaSftpSettings.java:322)
at com.adventnet.nms.util.ConsumeKnownEvents.showTheFrame(ConsumeKnownEvents.java:197)
at com.adventnet.nms.util.ConsumeKnownEvents.actionPerformed(ConsumeKnownEvents.java:103)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.AbstractButton.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI$Handler.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
My understanding is, when invoking remote object's method from the client, a the clientSocketFactory implementation will be called and an SSLSocket will be created for communication between remote server and client. In this case,my guess is somehow the createSocket() method of the clientSocketFactory is returning Null.The question is why?????Any help soon is appreciated.
Note that , we are doing this in a proxy set-up.I've made a similer post.
I was able to get it working by doing the following
Make sure to add and equals to your RMISocketFactory's
something at least this
public boolean equals(Object obj)
return obj != null && obj.getClass() == this.getClass();
I had to enable the follong cypher suite SSL_DH_anon_WITH_RC4_128_MD5
but this leads to a possible man in the middle attack.
I posted to try and get that resolved. (see ssl lockup on handshake) -
Flash player plug-in causing safari to crash
Hello,
I have been having a lot of problems lately with the flash player plug-in causing safari to lockup and at times crash. I have gone to the adobe website and reinstalled the flash player, but it still is happening. Is any one else having this problem? It happens on a wide variety of sites, and not just one. Any ideas why this is happening. Any help would be greatly appreciated. Thank you.
Derek OsterlohThanks for the files, that was really helpful. Google Image Search doesn't use Flash, but we're investigating a couple issues specific to this Intel 4000 chipset that have been reported on both Mac (Yosemite specifically) and Windows over the last couple weeks.
It's unlikely that Flash is causing this, just because we're interacting with the GPU at a pretty high level of abstraction. My suspicion is that this is a graphics driver bug.
My guess is that if you disable Hardware Acceleration in Flash and/or Safari, that this will go away. It's not an optimal solution, but it should give you a temporary workaround and confirm that we're looking in the right place.
The video troubleshooting guide includes instructions on disabling hardware acceleration in Flash:
https://helpx.adobe.com/flash-player/kb/video-playback-issues.html
I don't see an easy option in Safari 8 for disabling hardware acceleration, so let's start with that. -
I really can't figure out this problem. Search the internet tried all kinds of things, nothing help so far.
I have a Macbook Pro (Lion originally installed) running on Mavericks (all latest updates). SSD installed and the DVD tray is replaced by the original HDD.
The laptop wasn't running very smooth anymore so decided to give it a fresh Mavericks install (even though I know it's not really necessary for mac, it helped, everything is much faster except a weird internet problem came up).
After freshly installing Mavericks I couldn't get into my google account anymore, just wouldn't load. Tried Safari (use this normally) and Firefox and Chrome, this last was gave a SSL connection error, both Safari and FF said the website couldn't be loaded because the server didn't respond. For Gmail I use Mailplane which is just stuck on a white page. I tried repairing the keychain, repaired disk and disk permissions, cleaned browsers, turned off firewall and antivirus (Shopos) started in safe mode, checked time settings which were all good. Nothing of this helped. I even ended up creating a usb bootdisk for Mavericks, formatted the disk and reinstalled from the start just Mavericks and nothing else, started Safari, still the same problem. As even this didn't help I figured it's not worth reinstalling all software so put back my backup.
Now I ended up somehow only being able to use Gmail normally in Firefox, Chrome still gives SSL error and Safari can load the inbox, but I can't open any messages. I get the error there is a problem with the connection. If I try in Basic HTML mode it surprisingly does work.
You would say, just use Firefox, finished...but the thing is that sometimes random websites won't load in Firefox, when I load the same site in Safari it works perfectly.
O yes, I also tried the connect to my iPhone and use the Cellular data network, then it's no problem using Gmail in Safari normally. You would say it's a router problem, but I have another Macbook Pro (just one model later running Mountain Lion) this one works perfectly with every browser. Also my iPhone does everyting logged into the WiFi network.
You can understand I really have no clue what's going on here, I don't see any logic. I can only think of a hardware problem in my Macbook, but don't see how that could cause these problems.
I hope someone is ably to help me ?Please read this whole message before doing anything.
This procedure is a test, not a solution. Don’t be disappointed when you find that nothing has changed after you complete it.
Step 1
The purpose of this step is to determine whether the problem is localized to your user account.
Enable guest logins* and log in as Guest. Don't use the Safari-only “Guest User” login created by “Find My Mac.”
While logged in as Guest, you won’t have access to any of your documents or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this behavior; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.
Test while logged in as Guest. Same problem?
After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.
*Note: If you’ve activated “Find My Mac” or FileVault, then you can’t enable the Guest account. The “Guest User” login created by “Find My Mac” is not the same. Create a new account in which to test, and delete it, including its home folder, after testing.
Step 2
The purpose of this step is to determine whether the problem is caused by third-party system modifications that load automatically at startup or login, by a peripheral device, by a font conflict, or by corruption of the file system or of certain system caches.
Please take this step regardless of the results of Step 1.
Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards, if applicable. Start up in safe mode and log in to the account with the problem. You must hold down the shift key twice: once when you turn on the computer, and again when you log in.
Note: If FileVault is enabled, or if a firmware password is set, or if the startup volume is a software RAID, you can’t do this. Ask for further instructions.
Safe mode is much slower to start up and run than normal, with limited graphics performance, and some things won’t work at all, including sound output and Wi-Fi on certain models. The next normal startup may also be somewhat slow.
The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
Test while in safe mode. Same problem?
After testing, restart as usual (not in safe mode) and verify that you still have the problem. Post the results of Steps 1 and 2. -
SSL certificate not valid in Safari, but webservice works with Chrome and Firefox
As a MD, I'm used to check blood results online on the service
https://inet.zentral-labor.ch/c16/kunweb.dll - this is the online-portal of my laboratory medica in Zurich. http://www.medica.ch
Access to the loginscreen is public ;-) and should look like this (Screenshot from Firefox)
I've setup a new workstation 3 weeks ago (iMac with OS Lion 10.7.4), and this webservice service works fine till yesterday. Now, Safari is every time we try to reach the service telling us, that this service needs a certificate, we can choose only a default apple certificate
and then, the error is:
This Site needs a valid SSL-Client-Certificate... (Screenshot below)
What's wrong with Safari? With Chrome and Firefox, the webservice works fie without any problems.
Thanks for an advice
MD Patric EberleAs a MD, I'm used to check blood results online on the service
https://inet.zentral-labor.ch/c16/kunweb.dll - this is the online-portal of my laboratory medica in Zurich. http://www.medica.ch
Access to the loginscreen is public ;-) and should look like this (Screenshot from Firefox)
I've setup a new workstation 3 weeks ago (iMac with OS Lion 10.7.4), and this webservice service works fine till yesterday. Now, Safari is every time we try to reach the service telling us, that this service needs a certificate, we can choose only a default apple certificate
and then, the error is:
This Site needs a valid SSL-Client-Certificate... (Screenshot below)
What's wrong with Safari? With Chrome and Firefox, the webservice works fie without any problems.
Thanks for an advice
MD Patric Eberle -
Safari will not load selected https/ssl sites
Hello all,
I seem to be having what I believe to be an SSL certificate issue with the site https://my.pocketsmith.com/login . I am able to load the front page just fine (www.pocketsmith.com), but I have been totally unable to load either of the secure my.pocketsmith.com (pricing & login) pages which are linked at the top of the front page.
I am also unable to load the certificate info data when I click on the "lock" in the address bar after the page fails to load. It's like Safari doesn't want to deal with the certificate at all.
As far as I can tell the certificate is issued by GeoList and checked by Experian - I think that's how it works - for my.pocketsmith.com.
I'm running Windows 7 through a straight connection (no proxy).
I am able to access both of the SSL pages without issue on Chrome and IE 8.
I have no Safari 5 extensions or add-ons installed.
The error message Safari displays is:
"Safari can’t open the page “https://my.pocketsmith.com/login” because Safari can’t establish a secure connection to the server “my.pocketsmith.com”."
I've eliminated as many things as I can think of, to include updating the Thawte, Experian & GeoTrust root certs, deleting ALL SSL certs and starting over, resetting Safari (clear cookies, history, cache, etc.) several times, uninstalled/reinstalled Safari, uninstalled my antivirus software (NOD32), disabled Windows firewall, deleting all of the Safari 5 DNS pre-fetch files (the entire Safari folder in my user folder actually), switched my DNS server settings to both the Google and OpenDNS addresses, uninstalled/reinstalled Java (latest release), uninstalled/reinstalled Flash.....umm, that's all I can think of off the top of my head.
Still no joy.
I've read in a couple forums that it's possible there's a java script running that may not be compatible with Safari 5's security settings. Have also heard that it's possible the SSL cert. on the back end needs to be updated. No idea how plausible either of those theories are, but I've written PocketSmith to see if I can find out.
In the mean time I'm stuck using either IE or Chrome, neither of which I'm overly fond of. Just wondering if anyone has had a similar issue that they were able to get to the bottom of (I read the 1st 20 pages of the forum and wasn't able to find the exact same issue).
Thanks in advance.
EDIT: I forgot to mention that I also read somewhere that someone had traced a similar issue to a problem with TLS 1.x (don't remember which, sorry...) and/or SSL 3.0. In other words, it's possible that it's a protocol problem and not necessarily a certificate problem. However, Safari doesn't seem to have an option to check these settings built in - does it just use whatever the IE settings are or is there some way to manipulate them directly in Safari?
Thanks again.
Message was edited by: abn.geekHi
From your description, it seems the proxy server codes are correctly established in your System Preferences>Network panel, otherwise Camino would not work (uses the same Network settings as Safari).
I suspect the problem exists with the Proxy server relative to Safari. Have you spoken with your IT department, or whomever is in charge of the Network? -
Any Problems using SSL with Safari and the move with Internet explorer to require only TLS encryption.
Hi .
Apple no longer supports Safari for Windows if that's what you are asking > Apple apparently kills Windows PC support in Safari 6.0
Microsoft has not written IE for Safari for many years. -
I noticed a security hole in Safari 3.2.2 regarding a webpage delivered over SSL when including content from a non-secure location. Ironically, I found this in the developer login for the iPhone developer login.
The login page, which shows as being on a SSL page with an https delivery is trying to load images, such as http://devimages.apple.com/login/images/hero.png. Notice that it is asking from the non-SSL http site.
Under the new IE8, it is now warning about this issue and gives option to block or not block the non-secure content.
Under Safari, it shows without warning.
The risk of displaying mixed content is that a non-secure webpage or script might be able to access information from the secure content, creating a security hole.
Running Safari under Vista Business X64
LanceDo you solved tye probllem below. ??? Can you help me.
I have the same problem.
What the format of secinfo, reginfo and what value to to profile gw/reg_no_conn_info ??
Thanks,
Vulnerability Details
Date: Sun 10 May 2009 1:26:13 MET
Vuln: 300803
Vulnerability: SAPXPG Remote OS Command Execution at sysnr 3
ToDo: Set up a project to implement access restriction rules to RFC programs
with the 'secinfo' and 'reginfo' (only available in SAP Netweaver) mechanism
CertRef: M906071, SAP 30/08
Tool Reference: proprietary CERT and IPINS scanner
Comment:
Counted in: 2009-07
Monitor: -
What is the Chiper suite and TLS and SSL protocol sent by safari browser ver 8 from iOS8
Hello,
I have a production environment where users login in from Ipad/Iphone having Ios8 and safari v8 are not able to log on to the application.
However, on the same Ipad/Iphone when user tries login in with Chrome or any other browser , they are able to login.
I need the following help/information:
1. What is the SSL/TLS protocol version that is supported or used by Apple iOS8.
2. What is the cipher suites of safari version 8
Any information on this would be very helpful.
Thanks,
Parin.Just to recap, this is a collection of ports I have collected over time for people who needed this information when setting up the HP ePrint app so that they could view their email from within the app. I am certain other applications also need this information. Although lengthy, I could not find a more comprehensive place to retrieve this information. Feel free to post additional information, faulty information, or other related topics below as this is simply a collection of data and it would be practically impossible to test all of them. Thank you!
Don't forgot to say thanks by giving "Kudos" if I helped solve your problem.
When a solution is found please mark the post that solves your issue.
Every problem has a solution! -
Safari and self generated ssl certificates https connections
Hello,
Anyone know if there is a setting I can accept or install a non-3rd party security certificate in Safari? I can get to sites using https when they are 3rd party verified, but otherwise can not. Usually you just accept or install the certificate and it doesn't prompt anymore. On Safari though it just gives this error:
"Error: Page could not be loaded. An SSL Error has occurred and a secure connection to the server cannot be made."
Thanks.1. quit from all windowed applications then launch Keychain Access
2. remove from Keychain Access the reference to the self-signed certificate
3. quit from Keychain Access
4. in Safari, browse to a site that requires the self-signed certificate.
Please describe in detail what happens from that point onwards.
Thanks -
After updating my iPhone 4s to iOS 6.1, Verification Failed: "An SSL error has occurred and a secure connection to the server cannot be made." My wifi connection works; the icon is present at the top left. But Internet apps won't connect, be it Safari, App Store or Facebook & instagram. Push notifications also work so posts from Facebook and Instagram still pop-up. Does any one have any ideas? Thanks.
I have the same problem. Worked fine on Friday. My VPN or any ssl site do not work on my iPhone 5. Both work perfect on iPhone 4 and 4s
-
Possible Safari wildcard SSL issue
I really hope this is the right venue for this sort of thing. This is my first post here, so please forgive me if this is not the place.
That said, I think that I have run into an issue with the way that wildcard SSL is handled in Safari.
I have an SSL cert for *.sld.tld (a wildcard cert) I expect the cert to operated properly with 'www.some.sld.tld' under SSL but interestingly, that won't work under Safari.
I'm sorry to be dry and cite RFPs, but I think it best illustrates the problem and perhaps why both Firefox and Opera will allow for the above as valid in SSL with a wildcard cert.
The author for RFC2818 (which is the RFC I think that most folks will probably point to regarding this issue) says "Matching is performed using the matching rules specified by [RFC2459]." and then goes on to give some examples.
RFC2459 says, "For URIs, the constraint applies to the host part of the name. The constraint may specify a host or a domain. Examples would be "foo.bar.com"; and ".xyz.com". When the the constraint begins with a period, it may be expanded with one or more subdomains. That is, the constraint ".xyz.com" is satisfied by both abc.xyz.com and abc.def.xyz.com. However, the constraint ".xyz.com" is not satisfied by "xyz.com". When the constraint does not begin with a period, it specifies a host. " - Page 35 RFC 2459
and this:
"DNS name restrictions are expressed as foo.bar.com. Any subdomain satisfies the name constraint. For example, www.foo.bar.com would satisfy the constraint but bigfoo.bar.com would not." - Same page RFC 2459
Specifically, if you substitute 'abc' with 'www' in this phrase from above -".xyz.com" is satisfied by both abc.xyz.com and abc.def.xyz.com., you pretty much get what I want to have happen in Safari. Specifically, www.sld.tld and www.def.sld.tld would be both valid for HTTPS requests using the wildcard *.sld.tld SSL certificate.
If I have DNS control of a domain and I have a wildcard cert for that domain, then really based on logic and the RFC cites above, any valid DNS sub domain under the controlled domain should be available for SSL.
Tell me where I am going wrong here. Or, if I actually found a problem, please fix the bug when you can.
I don't wish to be accused of self promotion, so I won't list my real world URL example here, however if someone at Apple would like to have it, they are welcome to contact me and I will provide a direct example of the problem.
Thanks,
CommerceCompanyI have not independently researched the RFCs, but I am running into a similar problem and require a similar solution as you request. In my case, the issue arises in Mail.app instead of Safari.
I found the following reference in another forum, which would indicate that this person's interpretation of the RFC for wildcard domains in certificates is that an asterisk (*.foo.com) is only valid at one sub level (this interpretation is opposite yours, unfortunately). This behavior seems counter-intuitive, and I, like you, would hope that it would match all sub levels under foo.com.
http://www.dreamhoststatus.com/2007/06/17/ssl-certificate-renewal-for-most-custo mers/#comment-42283
In my case, I am trying to secure mail connections using SSL in Mail.app when connecting to a mail server hosted by a hosting company (MediaTemple.net). Their hosting domain is gridserver.com, and their SSL cert is for *.gridserver.com. Their hosted mail servers are provided via machine names similar to the following:
myhosteddomain.com.myaccountnumber.gridserver.com
Even after storing the *.gridserver.com cert in my keychain appropriately, this will not match in Mail.app.
Other forums (including the one above) seem to indicate that other mail clients honor the wildcard match for all manner of subdomains, regardless of whatever the 'correct' interpretation of the RFCs are. I hope that Apple will either set us straight on an appropriate way to achieve this, set us straight on why it is a dangerous thing to do, or consider modifying their certificate matching in Mail and Safari, etc., to support these subdomain issues. -
Safari 4.1.3 quits at SSL(?) drop down boxes
Hi. I posted this in the Safari area, couldn't get a response, thought I'd try here.
I am maxed out at OSX 10.4.11 and safari 4.1.3 on an old G4.
Just yesterday Safari repeatedly malfunctioned when accessing secure (SSL?) site drop-down boxes while trying to pay utility bills online. The boxes drop down, the desired selection can be highlighted, but when the cursor is lifted, the change is NOT made, the beach ball spins, Safari quits. Every time. On several different sites. Data can be entered in the blank spaces, but using the drop-down boxes results in a stall, then quit.
These type of tasks were accomplished as recently as the day before. Other Safari functions (browsing, youtube etc) seem to work. Firefox works in all areas.
Any ideas?
Attached a grab, just in case I'm mis-identifying anything. I'm entirely unfamiliar with secure sites, other than using them. What I call a drop-down box are labeled "Any", "0", "no maximum" on the grab.
Now Safari is starting to occasionally quit elsewhere, including this slow-loading site.
Boot / Restart doesn't seem to help. Have done routine Repair Permissions on HD, seemingly not needed.
Tried Reset Safari. No change.
Also emptied InputManagers folder. No change.
Tried trashing any "com.apple.safari.xxx.plist." files I could find in any Library>Preferences. Original problem persists and Safari now running discernibly slower.
Would simply re-installing Safari help? If so, is there any uninstall needed, or other steps to take? Any secret hidden folders that need to be trashed?
Will bookmarks be retained with a simple re-install?
Thanks in advance.Nope, not a secure site in anyway, it works here, and after looking at what it uses I suspect maybe Java Script.
Here's the things it loads...
http://www.pacunion.com/Search/
about:blank
about:blank
http://www.facebook.com/extern/login_status.php?api_key=ce28ad8bf6894a6321a84406 0a02803c&extern=0&channel=http%3A%2F%2Fwww.pacunion.com%2Fxd_receiver.htm&locale =en_US&sdk=edgar
http://connect.facebook.net/rsrc.php/v1/yQ/r/f3KaqM7xIBg.swf
http://www.google-analytics.com/__utm.gif?utmwv=5.2.6&utms=2&utmn=1069727453&utm hn=www.pacunion.com&utmcs=UTF-8&utmsr=1920x1080&utmvp=1373x894&utmsc=24-bit&utmu l=en&utmje=1&utmfl=10.1%20r53&utmdt=Pacific%20Union%20International%2C%20Inc.%20 -%20Seattle%20Homes%20for%20Sale%20%7C%20Seattle%20Real%20Estate&utmhid=21342809 82&utmr=0&utmp=%2FSearch%2F&utmac=UA-19850714-1&utmcc=__utma%3D68029712.17635789 43.1333494639.1333494639.1333494639.1%3B%2B__utmz%3D68029712.1333494639.1.1.utmc sr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmu=q~
http://www.mynextcustomer.com/widget/roiw.js?a=2417
http://www.pacunion.com/app/dashboard/mlsPropertyListings.php
http://www.pacunion.com/classes/getCSZ.php
http://www.pacunion.com/combine.php/1311660357-2/?exphdr=1&type=javascript&theme =pacunion&files=prototype.js,common.js
http://www.pacunion.com/combine.php/1329375233-15/?exphdr=1&type=javascript&them e=pacunion&files=../vendor/yui/SinglePropMin-YUI.js,../vendor/yui_252/build/yaho o-dom-event/yahoo-dom-event.js,../vendor/yui_252/build/animation/animation-min.j s,../vendor/yui_260/build/connection/connection-min.js,../vendor/yui_260/build/d atasource/datasource-min.js,../vendor/yui_260/build/autocomplete/autocomplete-mi n.js,scheduleView.js,validation.js,favourite.js,../vendor/rolodex/rolo.js,../ven dor/JSCal2-1.8/src/js/jscal2.js,../vendor/JSCal2-1.8/src/js/lang/en.js,polygonMa p1.js,listshare.js,propertySearch.js
http://www.pacunion.com/combine.php/1331362720-15/?exphdr=1&type=css&theme=pacun ion&files=common.css,dashboard.css,user.css,tabviewThm.css,../../../vendor/rolod ex/styles.css,../../../vendor/ewindow/EWindow.css,../../../vendor/yui/container/ assets/container.css,../../../vendor/yui/tabview/assets/tabview.css,tabviewThm.c ss,../../../vendor/yui/tabview/assets/round_tabs.css,../../../vendor/ewindow/EWi ndow.css,listing.css,listView.css,../../../vendor/yui_260/build/autocomplete/ass ets/skins/sam/autocomplete.css,../../../vendor/JSCal2-1.8/src/css/jscal2.css
http://www.pacunion.com/images/disclaimer/maxebrd.jpg
http://www.pacunion.com/images/disclaimer/REINFOLINK.gif
http://www.pacunion.com/multiCityUI.php
http://www.pacunion.com/Search/
http://www.pacunion.com/vendor/rolodex/Images/addAllBtn.gif
http://www.pacunion.com/vendor/rolodex/Images/clearBtn.gif
http://www.pacunion.com/vendor/rolodex/Images/compareBtn.gif
http://www.pacunion.com/vendor/rolodex/Images/directionBtn.gif
http://www.pacunion.com/vendor/rolodex/Images/saveBtn.gif
http://www.pacunion.com/wt/pacunion/images/common/arrow.png
http://www.pacunion.com/wt/pacunion/images/common/calander.gif
http://www.pacunion.com/wt/pacunion/images/common/ico_emailalerts.gif
http://www.pacunion.com/wt/pacunion/images/common/ico_expand.png
http://www.pacunion.com/wt/pacunion/images/common/ico_mini.png
http://www.pacunion.com/wt/pacunion/images/common/ico_savesearch.gif
http://www.pacunion.com/wt/pacunion/images/common/listingResultBg.gif
http://www.pacunion.com/wt/pacunion/images/common/openhomes_icon.gif
http://www.pacunion.com/wt/pacunion/images/common/rightpanel_bg.gif
http://www.pacunion.com/wt/pacunion/images/common/searchbox_bg.gif
http://www.pacunion.com/wt/pacunion/images/common/searchbox_top.gif
http://www.pacunion.com/wt/pacunion/images/common/send.gif
http://www.pacunion.com/wt/pacunion/images/common/seshadow_left.gif
http://www.pacunion.com/wt/pacunion/images/homesite/right_sep.gif
Maybe you are looking for
-
So i have purchased my Lumia 800 from Carphone warehouse in uk.. They said it is unbranded and unlocked it shows carrier as CV GB SW ID222 V08 i guess it is indeed unbranded and unlocked. But when i installed Airtel/Vodafone SIM in India, it is not w
-
Erratic behaviour of the keyboard of a Satellite R830
I cannot use my portatil for writting because the keyboard has an erratic behavior. When you are wrinting it jumps to different positions in the line. Probably it can be solved installing drivers again, but I not an expert, so someone can help about
-
The Older Version of Quick Time Cannot Be Removed
The feature you are trying to use is on a network resource that is unavailable. and The older version of quick time cannot be removed. Itunes requires quick time Have removed old versions of itunes and quicktime. Deleted folders with reference to app
-
Does Photoshop Elements 13 operate on a mac with Mac OS X Yosemite Version 10.10.1?
Does Photoshop Elements 13 operate on a mac with Mac OS X Yosemite Version 10.10.1? Tech specs says "10.8 through 10.9. What does "through" mean in this situation?
-
I just redeemed 100.00 on itunes and am trying to make an in-app purchase on a game and it let me make one purchase, when i went to make a second purchase a message popped up telling me to contact itunes support, not sure why??