stadium-love-.tumblr.com - connection not secure #117269
Labels
browser-firefox
diagnosis-priority-p2
engine-gecko
The browser uses the Gecko rendering engine
os-linux
Issues only happening on Linux.
priority-normal
severity-critical
The site or core functionality is unusable, or you would probably open another browser to use it.
type-ssl
Related to certificates and https
Milestone
URL: https://stadium-love-.tumblr.com/post/42470433237/willbd3-dahlgren-hall-on-the-naval-academys
Browser / Version: Firefox 109.0
Operating System: Linux
Tested Another Browser: Yes Chrome
Problem type: Site is not usable
Description: Page not loading correctly
Steps to Reproduce:
There was a "security issue" because stadium-love-.tumblr.com apparently doesn't match .tumblr.com (except that it does).
A check with OpenSSL 3.0.x says: subjectAltName: host "stadium-love-.tumblr.com" matched cert's ".tumblr.com"
The site works in other browsers, so I decided to report it to Firefox. If I had to guess, there's some edge case with the hostname ending with a hyphen.
The following is from the error page in Firefox:
Did Not Connect: Potential Security Issue
Firefox detected a potential security threat and did not continue to stadium-love-.tumblr.com because this website requires a secure connection.
What can you do about it?
stadium-love-.tumblr.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.
The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem.
Websites prove their identity via certificates. Firefox does not trust this site because it uses a certificate that is not valid for stadium-love-.tumblr.com. The certificate is only valid for the following names: *.tumblr.com, tumblr.com
Error code: SSL_ERROR_BAD_CERT_DOMAIN
Browser Configuration
From webcompat.com with ❤️
The text was updated successfully, but these errors were encountered: