Erreur certificat gratuit

Hello,

Since this morning I have had problems accessing my sites with Chrome on webserver.

My certificate is valid in the management of my domain name www.hgc63.fr, but chrome shows me the following message:

The website you are about to open is misleading
Malicious individuals at work on the www.hgc63.fr site could encourage you to carry out dangerous operations, such as installing software or disclosing personal information (passwords, telephone numbers or credit card numbers, for example ). Learn more.

I renewed my certificate but nothing changes.

Can you help me?
Cordially

1 Like

Your website seems to be fine to me. It's serving certs which were renewed this morning. Did you do a "hard" refresh, i.e., without cache et cetera?

Also, you seem to be serving two separate certs for the apex domain and the www subdomain. You realise these two hostname could have been incorporated into a single cert, right?

2 Likes

I just migrated my server from a server with a different ip. My old IP was 152.228.141.191 and the new one is 141.94.203.73. I am not very comfortable with the management of certificates. Did I make a mistake creating a new certificate with the new IP address?

I have multiple domains on this webserver :
certificates:
admin.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 89
app.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 89
dev.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 84
hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 89
mail.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 89
matomo.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 84
phpmyadmin.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 84
webmin.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 84
www.hgc63.fr:
CA_type: Let's Encrypt
summary: Great!
validity: 89

I wouldn't call it a "mistake", more "an opportunity to optimise". As you can see at https://crt.sh/?q=hgc63.fr&deduplicate=Y, you've issued multiple certificates with just a single hostname/subdomain incorporated in it. But you easily could have issued just a single certificate with all those subdomains in it, making it a lot more efficient, especially from the Let's Encrypt side (load et cetera).

And as said earlier, your site works fine, so that's good anyway.

1 Like

How can I revoke all certificates and create a single one?

There's no need to revoke previous certificates unless the private key has been leaked. (Some othe reasons apply, but it's not required in this situation.)

I don't know, as you haven't provided us the required information to answer that. There are multiple ways to get certificates as there are many, MANY clients out there capable of doing that and you haven't told us how you got the certificates in the first place.

2 Likes

I do see a Google Safe Browsing warning in my Firefox. This error usually has nothing to do with TLS certificates.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.