• 14
name

A PHP Error was encountered

Severity: Notice

Message: Undefined index: userid

Filename: views/question.php

Line Number: 191

Backtrace:

File: /home/prodcxja/public_html/questions/application/views/question.php
Line: 191
Function: _error_handler

File: /home/prodcxja/public_html/questions/application/controllers/Questions.php
Line: 433
Function: view

File: /home/prodcxja/public_html/questions/index.php
Line: 315
Function: require_once

On http://www.whynopadlock.com/check.php whilst testing the following url https://www.bobclubs.com/pay I get the following message:-

ERROR: cannot verify www.bobclubs.com's certificate, issued by `/C=US/O=GeoTrust, Inc./CN=RapidSSL CA': Unable to locally verify the issuer's authority.

I am not 100 sure why this is as all issuer is OK, all items are secure and I get a padlock on all browsers.

No pad lock message

Can any one shed some light on this?

Presumably, whatever list of trusted CA certificates that whynopadlock.com uses does not include the CA certificate at the root of the trust chain used by your certificate. Given that you claim that browsers seem to trust the certificate, then I'd say it's a limitation of the testing site.

  • 5
Reply Report

It looks like you did not setup the intermediate certificate correctly.
Most browsers will still show the lock in this situation.

Take a look at this verifier from rapidssl:
https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO9556

And fix by following this document (Apache):
https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO6252&actp=LIST&viewlocale=en_US

Or this one (IIS):
https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO10517&actp=LIST&viewlocale=en_US

  • 4
Reply Report

most probably you did not install intermediate certificate included in message you've received from rapid ssl. take a look here.

  • 3
Reply Report
      • 2
    • @pQd A good example is mobile devices which don't update their cert storage as Android <2.2 did when Geotrust and RapidSSL changed their root cert.
      • 1
    • Firefox has the CA certs for both RapidSSL and GeoTrust CA. That means that the chain will work all the way back to GeoTrust even if the server doesn't present the GeoTrust cert. If you remove the RapidSSL cert from the browser's list of CA certs, the browser will give you a warning. You can test this easily with openssl verify, too.

Trending Tags