I receive e-mail notifications of ubuntu-mate threads that I am following. Starting yesterday these links result in a Firefox security risk warning " Firefox detected a potential security threat and did not continue to links.ubuntu-mate.community. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details."
That's strange, not seeing that here. Of course, different countries, different ISPs, who knows what potholes appear along the digital highway.
When it happens, please could you take a screenshot (or paste here) what it says with the "More.." or "Advanced" button open? It usually describes the security issue in a way to help identify what might be causing it (e.g. HTST)
Also:
- Are you clicking the link from web mail or desktop mail client?
- Which Firefox version? (Alt key → Help → About)
- Is your system clock accurate?
- Is your system up-to-date (or updated yesterday)?
- Tried clearing the browser cache?
- Do you have another web browser to try?
2 Likes
Most probable reason for the warning is misconfiguration of Firefox trust chain. Try to follow @lah7 advice and compare with
and
Yep, but it's links.ubuntu-mate.community
Actually, visiting links.ubuntu-mate.community directly shows it's HTTP. I bet it's because @jaybo has a HTTPS everywhere extension or Firefox is set to be 'strict' and force HTTPS.
Our emails are sent from SendGrid, and the certificate is issued by them too. I don't have access to that provider to change any settings. The email links are actually HTTP.
1 Like
Yes, I have HTTPS mode only
I have HTTPS mode only enabled
Clicking from webmail client
Firefox 137.0.2 (64-bit)
clock is accurate
system updated
cache has been cleaned
did not try other browser as Firefox is default
Also, I mentioned it just started yesterday, but looking back, it has been a long while since I got a notice and I have upgraded PC since then.
1 Like
Thanks. For the time being, this is expected for links.ubuntu-mate.community since it is HTTP only. I don't have access to check things further or make any improvements.
Security wise, it's no different to older HTTP sites. There are no credentials or cookies exchanged under that subdomain, it only does a redirection.
Looks like SendGrid does alter the URLs to proxy them through links.ubuntu-mate.community rather then directly to ubuntu-mate.community. I recall @vkareh had an issue years ago with URLs under the plain text email adding an extra character... actually, that still is happening!
4 Likes
Hey Luke! Long time! Since you beamed me here, I'll share that I just experience the same issue as OP, except for I'm getting a very strange page:
Not sure what to make of it, but it looks to be part of whatever software is driving the links.um.c app.
4 Likes
Pardon the summon! Yes, this isn't our server showing that message. DNS points to SendGrid.
I believe it has to be HTTP because HTTPS is securely set up for the rest of the domain (that we control, ours).
I reached out to @Wimpy to see if we can 'disable' this URL rewrite. SendGrid was set up a very long time ago.
4 Likes