Your connection is not private
-
-
temminckiiii last edited byPossible solution:
The displayed error may be shown when your certificate setup is out of date - if you’re using Windows 7, you have to renew them manually (since Microsoft doesn’t support Windows 7 anymore). A lot of websites rely on those certificates for authentication purposes. Please check whether the DST Root CA X3 certificate is still valid on your computer, and if you have the new ISRG Root X1 already installed by any chance. You can do so by running certmgr.msc in the command line.
If you don’t have the ISRG Root X1 certificate set up yet, here’s a quick-how to:
How to setup the ISRG Root X1 certificate on Windows 7/10:
Download the .der ISRG Root X1 certificate file from https://letsencrypt.org/certificates/. If you can’t access the website, try downloading this file to a different machine, and transferring it (e.g. pendrive).
Click the downloaded file to start the installation process. (or left click and choose install)
Click install certificate.
Click “Next” on the next window
Select “Place all certificates in the following store”:
Click “Browse” and select “Trusted Root Certification Authorities”. Confirm the changes by pressing “OK” and “Next”:
Finish the certificate installation by pressing “Finish”:You can press the Windows key + R to bring up the Run command, and type certmgr.msc and press Enter to open the certmgr.msc window and to check if the installation was successful (the ISRG Root X1 Certificate should appear under the Trusted Root Certification Authorities Certificate Store)
(You can download new DST Root CA X3 certificate replacement following the link in the same website.)
-
temminckiiii last edited by
@twoboots said in Your connection is not private:
This was overnight, and it started over a week ago
"DST Root CA X3 will expire on September 30, 2021. That means older devices that don’t trust ISRG Root X1 will start getting certificate warnings when visiting sites that use Let’s Encrypt certificates."
See my previous post how to fix this.
-
223mc last edited by
im in the same boat. I have tried 6 different browsers. Im on Mac 10.11. It happens on most websites.
I have cleared cache on all browsers
2) cleared cache on the machine
some sites give the option "proceed (unsafe)"
other sites do not even allow that.
a "hack" is type "thisisinsafe" which seems to bypass this error. If not reload and try again, usually works.
worst case, I open another browser and try the same thing. You can get in but its really annoying. I would go so far as to suspect this is some form of internet censorship since it is happening across teh board and does not seem to be specific to one browser, website or machine. I have even contacted my service provider who claims everything is cool on their side.
a small percentage will jump though the hoops and loops to get through to the websites. Maybe this is what they are hoping that most will just give up. -
twoboots last edited by
@temminckiiii Thank you very much. I found the certificate I was needing, installed it, and I can visit those sites again. I guess it will keep happening while I'm still on W7...
-
223mc last edited by
I thought the certificate was a function of the websites you were visiting? Are you saying you downloaded something onto your computer that allows you to visit the sites?
-
temminckiiii last edited by
@223mc Certificates are installed in your computer. Usually they are updated automatically. In Windows it works like this:
"Starting with the release of Windows Vista, root certificates are updated on Windows automatically. When a user visits a secure Web site (by using HTTPS SSL), reads a secure email (S/MIME), or downloads an ActiveX control that is signed (code signing) and encounters a new root certificate, the Windows certificate chain verification software checks the appropriate Microsoft Update location for the root certificate. If it finds it, it downloads it to the system. To the user, the experience is seamless. The user does not see any security dialog boxes or warnings. The download happens automatically, behind the scenes."
-
temminckiiii last edited by
@223mc Here you find more info of your problem:
https://eclecticlight.co/2021/09/21/el-capitan-and-older-mac-os-x-are-about-to-have-a-security-certificate-problem/ -
223mc last edited by
@temminckiiii unbelievable! Thank you! This is the first light I have seen in this tunnel! Have not gone through the whole article yet but Im excited that this may be the solution as it seems to be a machine problem, not the websites or browsers.
You wouldn't believe how many places Ive been inquiring about this problem and so far no solutions. I hope this is it. Thanks for your reply!
-
temminckiiii last edited by
@223mc Maybe this works for you?
https://www.eduhk.hk/ocio/content/faq-how-add-root-certificate-mac-os-x -
223mc last edited by
@temminckiiii crossing fingers but I think this worked! It was a matter of downloading a new certificate and setting it to "always allow". The new certificate does not expire until 2035. So far Ive only tried a few sites but they have worked. I can't thank you enough! So simple but to hard to find this needle in the haystack!
-
Referenced by temminckiiii
-
Locked by
leocg
