Blocked on EDGE broser

Hello,

In the past few days our pages are being blocked in Edge browser as our domain up.diacam360.com is missing under CN.

In the certificate we’ve purchased you can see that both system.diacam360.com and up.diacam360.com domains are listed under DNS but only system.diacam360.com is under CN.

Clearly EDGE browser is not looking under DNS like other browser and it is looking under CN and that is why our pages are blocked (example - https://up.diacam360.com/scan/b0ea_368801).

How can we add up.diacam360.com as an additional CN or please instruct us what to do to fix this issue.

Thank you

Please show a pic of the error/message.

The cert in use was provided at no cost.

Doubtful; again, show a pic of the problem.

There can only be one CN (Common Name) in any certificate.
[this is not a restriction controlled, nor imposed, by LetsEncrypt]

Hi @lhirsh

that's wrong. A certificate may have one CN entry. But can have hundreds of DNS names.

It's completely unrelevant what's used as CN.

Please share screenshots of your problem.

this is a link you can enter into EGDE broser and you will see the block message - https://up.diacam360.com/scan/8287_366026

Your site has malware or critical downloads.

That’s not a certificate problem.

PS: What’s the concrete url with that problem?

What says “More information”?

1 Like

Yep, now my Edge shows the same problem.

The certificate is valid, it's a phishing problem.

1 Like

the link is pointed to our PHP that creates a dynamic page showing diamond spinning and other information. all pictures are stored on our cloud on Amazon. We are not using any personal information.
All our links looks the same and the PHP knows what information is built in the html according to the end of the link.
samples of links:






There are errors. Check the Grade I - https://check-your-website.server-daten.de/?q=up.diacam360.com%2Fscan%2F8287_366026

An og:image

https://diacam360uploads.s3.amazonaws.com/A_DiaCam360_Israel_Services_217/AR-3814_24_12_19_13_20_34/cam1/cam1_zoom_001.jpg

but that sends an Amazon Xml Forbidden, application/xml as wrong content type. May be that's a false positive.

How do you know it is a phishing problem?
The page is not asking for any information and not using any information beside our PHP and DB.
Is there a way to know exactly what is wrong with those pages?

What can I do if SmartScreen warns me about a site I visit, but it's not unsafe?

From the warning page, you can choose to report this site as a safe site. Select More information , and then select the Report that this site does not contain threats link to go to the Microsoft feedback site, and follow the instructions.

That's what you need to do. Nobody on this forum can help you, this is part of Microsoft's SmartScreen filter. Not related to your certificate in any way.

1 Like

Read your output.

There is an iFrame

https://system.diacam360.com/scanresault/scan.php?scanId=366026

with a redirect to

https://diacam360uploads.s3.amazonaws.com/scan.html?dir1=A_DiaCam360_Israel_Services_217&dir2=AR-3814_24_12_19_13_20_34&showDet=0&logo=logo.jpg&company=Shirtal%20DiaCam%20ltd&contact=%20&phone=%2B972-3-6132138&loader_bar=1&email=scan%40diacam360.com&web=&shape=Cut-Cornered Square Modified Brilliant&color= Fancy Light Yellow, Natural Even&name=AR-3814&size=9.01&clarity=VVS2&lab=GIA&addInfo=&cert=5192867114.pdf&frames=150&fps=25&frontView=0&magnify=1&backstone=1&fronstone=1&scert=1&v=5196

I don't know if Edge like that. Unusual configuration.

1 Like

Thank you for that!
I did it already yesturday. Waiting for them to reply…

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.