Slashdot Mirror

← Back to Stories (view on slashdot.org)

Buggy Domain Validation Forces GoDaddy To Revoke SSL Certificates (threatpost.com)

Posted by BeauHD on from the time-to-take-action dept.

msm1267 quotes a report from Threatpost: GoDaddy has revoked, and begun the process of re-issuing, new SSL certificates for more than 6,000 customers after a bug was discovered in the registrar's domain validation process. The bug was introduced July 29 and impacted fewer than two percent of the certificates GoDaddy issued from that date through yesterday, said vice president and general manager of security products Wayne Thayer. "GoDaddy inadvertently introduced the bug during a routine code change intended to improve our certificate issuance process," Thayer said in a statement. "The bug caused the domain validation process to fail in certain circumstances." GoDaddy said it was not aware of any compromises related to the bug. The issue did expose sites running SSL certs from GoDaddy to spoofing where a hacker could gain access to certificates and pose as a legitimate site in order to spread malware or steal personal information such as banking credentials. GoDaddy has already submitted new certificate requests for affected customers. Customers will need to take action and log in to their accounts and initiate the certificate process in the SSL Panel, Thayer said.

2 of 33 comments (clear)

  1. Re:Hard to believe by dgatwood · · Score: 2

    I tried hosting a site with them, and found that all the stupid WordPress hosting on the same site resulted in horribly inconsistent performance, with requests frequently taking only two or three seconds to send back the data, but waiting twenty or thirty seconds to *start* sending data.

    I asked them to move me to a server that was less overloaded with bloated WP instances, since my site was a trivial static content site. They said no. I pulled the plug and got a refund.

    To make a long story short, after trying other shared hosting providers with mostly poor luck, I now have a Mac Mini colocated in a data center in Wisconsin.

    --

    Check out my sci-fi/humor trilogy at PatriotsBooks.

  2. Re: GoDaddy is HORRIBLE. by freeze128 · · Score: 3, Insightful

    Their phone support is poor because they have gotten so large, that they need a giant call center. If you're working on a complex problem with them, you will never get connected to the same agent twice. It's like starting over every single time.

    They offer POP/IMAP mail services that don't exactly adhere to the standards, and have arbitrary limitations, like how many folders you can create.

    I'm sure others will be happy to post other GoDaddy nightmares.