[ale] Suntrust.com - Live Solid, Bank Solid... Just not securely without a warning :)

Matthew simontek at gmail.com
Sun Aug 19 00:24:51 EDT 2012


It doesn't bother me as much as it should. I get those all the time when I
am viewing pages from work. Now the pages I am viewing usually have a .mil
in the address, and I constantly think, why isn't this fixed yet?

On Sat, Aug 18, 2012 at 11:56 PM, David Tomaschik
<david at systemoverlord.com>wrote:

> On Sat, Aug 18, 2012 at 7:11 PM, Jeremy T. Bouse
> <jeremy.bouse at undergrid.net> wrote:
> >         So I have a business checking account with Suntrust... I was
> elated and
> > pleasantly surprised when I go to log into my account and every single
> > secure certificate presents me with a failure in Firefox and have to put
> > in exceptions. Looking into it shows that SunTrust enjoys using GeoTrust
> > SSL certificates but their IT department is unable to successfully
> > install them along with the proper GeoTrust SSL Intermediate CA
> certificate.
> >
> >         I'm not sure which incompetence scares me more... That a large
> bank's
> > IT department is unable to do such a simple step as install an
> > intermediate CA certificate when they install their server certificates
> > or the fact that browsers like Google Chrome and IE happily except this
> > certificate and state it's all valid without actually validating the
> > certificate chain.
> >
>
> openssl s_client -CApath /etc/ssl/certs/ -connect suntrust.com:443
> verifies the chain just fine.
>
> IIRC, Firefox uses its own CA root store, and Chrome (on Linux) uses
> the system CA store.
>
> David
>
>
>
> --
> David Tomaschik
> OpenPGP: 0x5DEA789B
> http://systemoverlord.com
> david at systemoverlord.com
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>



-- 
SimonTek
912-398-6704
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20120819/986b2da3/attachment.html 


More information about the Ale mailing list