• When you click on links to various merchants on this site and make a purchase, this can result in this site earning a commission. Affiliate programs and affiliations include, but are not limited to, the eBay Partner Network.

Archived

This topic is now archived and is closed to further replies.

MCS login down for me?

Started by Taco,

10 posts in this topic

Taco

Taco

Posted
Posted

Has anyone else tried logging in to MCS? It has been for at least an hour unless something is just wrong with my security. I can't bid on any of the SA ending tonight. Will they push all the auctions back a day?

Link to comment
Share on other sites
mycomicshop

mycomicshop

Posted
Posted

I'm seeing certificate revoke errors, which would be due to fixes we put in related to the recent Heartbleed SSL vulnerability. We're checking on it now, and if no immediate fix, I'll bump tonight's auctions back a day.

Link to comment
Share on other sites
Taco

Taco

Posted
  • Author
Posted
I'm seeing certificate revoke errors, which would be due to fixed we put in related to the recent Heartbleed SSL vulnerability. We're checking on it now, and if no immediate fix, I'll bump tonight's auctions back a day.

 

Thank you!

Link to comment
Share on other sites
DiceX

DiceX

Posted
Posted

I had the same problem. If I tried to refresh my already logged in browser window it gave an error.

I could go back to previously viewed pages and had the same issue.

 

I tried typing https://www.mycomicshop.com directly in the address bar and it still had errors.

When I took off he https:// and typed in www.mycomicshop.com , it started working again without a problem.

 

It was odd and did it on both of my computers.

 

 

Link to comment
Share on other sites
Cyclops

Cyclops

Posted
Posted
I'm seeing certificate revoke errors, which would be due to fixes we put in related to the recent Heartbleed SSL vulnerability. We're checking on it now, and if no immediate fix, I'll bump tonight's auctions back a day.

 

Are there any other security concerns relating to Heartbleed, Conan? Was MCS compromised at all?

Link to comment
Share on other sites
mycomicshop

mycomicshop

Posted
Posted

Last week we took the necessary steps to close off the Heartbleed vulnerability. There's no evidence that our systems were ever attacked or affected in any way--it was just the standard stuff we needed to do to remove the vulnerability.

 

Related to all that, we requested a new certificate--the document that lets your browser make a secure https connection to our servers. Our hosting service put the new certificate in the right place for some of our virtual hosts, but not all of them. Whatever they did, it worked correctly when they tested their work, but wasn't actually fully correct. Whenever our old cert was removed, it caused the login problem you saw. Once they put the new cert in the right place, it fixed everything.

Link to comment
Share on other sites
Cyclops

Cyclops

Posted
Posted
Last week we took the necessary steps to close off the Heartbleed vulnerability. There's no evidence that our systems were ever attacked or affected in any way--it was just the standard stuff we needed to do to remove the vulnerability.

 

Related to all that, we requested a new certificate--the document that lets your browser make a secure https connection to our servers. Our hosting service put the new certificate in the right place for some of our virtual hosts, but not all of them. Whatever they did, it worked correctly when they tested their work, but wasn't actually fully correct. Whenever our old cert was removed, it caused the login problem you saw. Once they put the new cert in the right place, it fixed everything.

 

(thumbs u Great to hear it's all A OK.

Link to comment
Share on other sites
Go to topic listing