Overstepping the invalid certicate

[Giampy]

Hello everyone.
I no longer follow this website because its certificate is no longer valid for my browser. I'm here out of curiosity after I overstepped the block that my browser signaled to me.
Who is the new "owner" of this website? What do I risk staying here?

GF

[Deozaan]

Hmm... I'm not sure what you're talking about. Nothing has changed. Mouser still owns this website. My browser says the certificate is valid and the connection is secure.



It sounds to me like the issue is with your browser. Have you updated it lately? Or perhaps tried with a different browser?

[Ath]

What browser (and version) are you using?

[Giampy]

I am a dinosaur: I still use Windows XP and Maxthon 5.
I perfectly realize that the trouble depends on my system. I only want to know if I am under risk.

[Deozaan]

I only want to know if I am under risk.

-Giampy (August 09, 2022, 02:03 PM)

Yes. But not from this site. If you're using an old OS and old browser that are not receiving security updates, then you are at risk.

[x16wda]

I remember using Maxthon, I liked it. And XP was a step up from its predecessor too.

But if you are going on the Internet with a Windows XP computer, you should assume that any site you go to, or any web ad you see, could easily dump malware, spyware, back doors, etc on your computer and there is nothing you can do to prevent it. You roll the dice every time you browse.

[Shades]

Sounds to me like a case of not knowing how certificates work.

Very simply stated: Each certificate has a start- and end-date. After the end-date it automatically becomes invalid. Also, a Certificate Authority (CA) is used to verify the validity of a certificate. CA certificates have a start- and end-date too.

Operating systems always come with a set of those CA certificates and usually do not receive updates regarding those CA's.

Your old XP system will not have received many updates and if you didn't add updated CA's yourself, you will see many more browser messages about websites not being able to verify that they are safe to use. And if you need to resort to adding/removing CA's yourself, how sure are you that those updated CA certificates have not been compromised in any way? That's a rabbit-hole you hardly can reason yourself out of.

And you should also be worried that if you go to banking websites that still show up as safe in your browser. It means that these accept out-of date CA certificates as valid. That might make you "feel" safe, but in reality the banking info going through your system is open for 'man-in-the-middle-attacks' and all the consequences that come with that.

CA certificates are usually valid between 5 and 10 years. Certificates bought by users/companies are almost always 1 year valid. Free certificates are commonly valid for 90 days or less. There are good reasons to have validity period limitations. The main one is that shorter periods mean (much) more safety for the end-user.

Windows XP is falling dangerously behind the times. Not only because Microsoft doesn't make fixes for it anymore, not only because it's code-base is very well known in the wrong circles, but also because of a lack of updates on CA certificates.

Previous posters already said that every time you start up your XP computer and do anything on the internet, you are putting yourself at serious risk.
No matter how much you like XP, you should only run that operating system in a container (like a virtual machine) that is not allowed to go onto the internet. Even if a new system does not fit in your budget, An old Windows 10 system isn't too expensive for most.

Even though Windows 7 is also out of Microsoft support, it is still safer to use that than Windows XP. Windows 7 computers are practically given away nowadays. Donationcoder.com and its certificate aren''t the problem, your geriatric system setup is. Not by your fault, let me be clear. XP has out-aged the internet for quite a while now.