« Apache Lenya 2.0.4 Released | Main | It Looks Like Firefox 4 Went Gold »

03/15/2011

SSL Certificate Warning of the Month: The Aquarium

In support of the recent 3.1 launch of GlassFish open source and commercial versions, The Aquarium is featuring a nice Download GlassFish 3.1 Final badge in the top right hand corner that, unfortunately, generates SSL warnings.  I'm preserving the target in the Download link in this article because I believe that the error will be corrected soon but people might be interested in seeing what was originally returned.  

The error is a simple Hostname Mismatch warning but with the rapid rate of change in most browsers, it's always interesting to me to see how browsers handle these types of warnings.

If there were a prize for 'prettiest error message', Safari would win:

Safari5-untrusted-cert

Google Chrome provides similar information to what Safari provides but wraps it all up in an angry red:

Chrome-untrusted-cert

Interestingly, from my standpoint as a web site administrator standpoint, Firefox wins here in that it is providing the most useful information:

Firefox4-untrusted-cert

All three browsers are good in that they pop up a warning that the hostname of the site does not match the common name on the certificate but Firefox goes the extra mile by showing *ALL* the valid hosts for this certificate.  Safari and Chrome display that the site name (glassfish.dev.java.net) does not match the certificate name (www.java.net) but this type of certificate is valid for more than just www.java.net.

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a01156fbc6fe6970c014e86b440c6970d

Listed below are links to weblogs that reference SSL Certificate Warning of the Month: The Aquarium:

Comments