Hacker News new | past | comments | ask | show | jobs | submit login

Heads up - I am getting an invalid certificate warning in your site. iOS Safari.



And in Firefox:

"Firefox does not trust this site because it uses a certificate that is not valid for magmalabs.io. The certificate is only valid for the following names: m.magmalabs.io, www.magmalabs.io

Error code: SSL_ERROR_BAD_CERT_DOMAIN

https://magmalabs.io/ produces the error. https://www.magmalabs.io/ does not. https://magmalabs.io/ works in Chrome. Does Chrome delay the certificate validity check until after the HTTP redirect?


I filed a Firefox bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1617987

Chrome has a heuristic they call SSLCommonNameMismatchHandling: if Chrome tries to connect to a site like "https://example.com" but the returned cert is for the "www." subdomain of the same domain, Chrome will silently redirect to "https://www.example.com".




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: