Issue with certificate redirecting to an unknown website


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: www.crimecoast.com

I ran this command: sudo certbot --apache -d crimecoast.com -d www.crimecoast.com

It produced this output: When I access me website now it automatically changes to HTTPS, which is good, but it redirects to a https://www.a-1surplus.com/ and produces a privacy error: Your connection is not private
Attackers might be trying to steal your information from www.a-1surplus.com (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_COMMON_NAME_INVALID

This server could not prove that it is www.a-1surplus.com; its security certificate is from *.bluehost.com. This may be caused by a misconfiguration or an attacker intercepting your connection.

bluehost.com is my old host, before I migrated to my own VPS.

My web server is (include version): Ubuntu 18

The operating system my web server runs on is (include version): Apache

My hosting provider, if applicable, is: VPS with OVH

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No


#2

Hi,

It seems that you have some cash he problem in your browser… Visiting from my chrome & Samsung browser are fine.

Try using another browser or refresh the page and clear cache (Ctrl + F5 in chrome)

Thank you


#3

After clearing my cache, it’s no longer redirecting, but when I change to https protocol, https://www.crimecoast.com, it’s still redirecting to https://www.a-1surplus.com/


#4

Refresh your cache again…

It’s working in both ways…

(P.S. why not change another browser and try again?)

Thank you


#5

@CarlM24 do you have anything in your /etc/hosts file? On the computer you are visiting it from?


#6

Hi @CarlM24

this is a cache problem of your browser. Calling www.crimecoast.com, I’ve been redirected to https://www.crimecoast.com/ - then, there is no redirect.

–

download http://www.crimecoast.com/ -h
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Length: 319
Content-Type: text/html; charset=iso-8859-1
Date: Fri, 15 Jun 2018 09:12:09 GMT
Location: https://www.crimecoast.com/
Server: Apache/2.4.29 (Ubuntu)

Status: 301 MovedPermanently

–

download https://www.crimecoast.com/ -h
Link: https://www.crimecoast.com/wp-json/; rel=“https://api.w.org/”
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Date: Fri, 15 Jun 2018 09:12:15 GMT
Server: Apache/2.4.29 (Ubuntu)

Status: 200 OK

–
200 is the last status.


#7

P.S. can someone check if the ipv4 version of website is working?

My ISP & mobile network provider both use IPV6 so I can’t see if ipv4 is redirecting…

UPDATE… Nevermind, all domains are pointing to an EU IP (and not located in bluehost’s ASN)


#8

I can only see the site on IPv4, IPv6 doesn’t connect for me on 80 or 443 (tested from two locations).

curl -X GET -I -6 https://www.crimecoast.com
curl: (7) Failed to connect to www.crimecoast.com       port 443: No route to host

#9

It appears it was a caching issue.

Sorry for wasting everyones time and thanks for you help, it’s much appreciated :)!


#10

PS: But the website has a lot of mixed content. You should change that.

Chrome - Developer tools - Console or FireFox - Console:

http://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css
http://fonts.googleapis.com/css?family=Titillium+Web:600,400

and other


#11

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.