Home | Blog | Software | Reviews and Features | Forum | Help | Donate | About us
topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • December 03, 2016, 05:55:00 PM
  • Proudly celebrating 10 years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: How Safari, Chrome, and IE handle SSL  (Read 636 times)

Stoic Joker

  • Honorary Member
  • Joined in 2008
  • **
  • Posts: 6,294
    • View Profile
    • www.StoicJoker.com
    • Donate to Member
How Safari, Chrome, and IE handle SSL
« on: August 27, 2014, 06:57:03 PM »
So I was working with a client today, trying to get their Gmail account forwarded to Exchange Online. They were using their preferred Google Chrome browser to access their Gmail account to perform this seemingly simple action ... But it kept failing..

The error message was completely uninformative, and seemed to imply that the address to be forwarded to was not valid for some reason. However the address was indeed quite valid.

So I had them open IE in in-private mode to ensure a clean browsing environment. In the hopes of at least gleaning something in the way of an at least somewhat informative error message. IE handily obliged, and informed us that the certificate being provided by the next popup window was not valid. So Google's browser was rejecting the certificate that Google's own mail server was trying to use ... Impressive? ...Not!

Now here's the really sad part. Knowing that the client had an iPad, I told them to try and perform the same action using the Apple Safari browser ... Because it's security was such total crap that it would most likely accept anything ... And horrifyingly I was right. It sailed straight on through like it didn't even bother to look at the cert let alone ponder it's validity.

FireFox was not readily available for this test...(so wasn't included)...but I did find it rather darkly comical watching Safari fail a security check in such a spectacular fashion.

 :D