The Roll20 wiki isn't trusted

When I tried to access the Roll20 wiki, my firewall warned me about its security certificate being invalid (because it doesn't have an issuer): "This Connection is Untrusted You have asked Firefox to connect securely to wiki.roll20.net, but we can't confirm that your connection is secure. Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified. If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue. wiki.roll20.net uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer)" Yes, I could click past this warning, but this kind of error will put off more users than just me, so it would be better if you fixed it asap.

I'm showing it as secure but Ill let the Devs know. In the meantime perhaps you should try Chrome to see if it is a problem on your end.

Sorry - I'm too busy to install and run a third browser on my PC, especially considering that they know where to look. (They're probably missing an issuer.)

I'm not seeing an issue with FireFox 26.0: Or with Chrome 36.0.1985.125: Or with Safari 7.0.5 (9537.77.4): What version of Firefox are you using? It seems more likely that you do not have the latest Root CA Certificates installed. I'm not precisely certain how you update those, but it seems to start with visiting here: <a href="https://www.mozilla.org/en-US/about/governance/pol" rel="nofollow">https://www.mozilla.org/en-US/about/governance/pol</a>...

It shows up on my chrome unsecured when using my tablet.

Looks like an intermediate cert is missing from the bundle presented by the server, I'll ping the devs to address it. <a href="http://www.sslshopper.com/ssl-checker.html#hostnam" rel="nofollow">http://www.sslshopper.com/ssl-checker.html#hostnam</a>...

Aaron said: I'm not seeing an issue with FireFox 26.0. What version of Firefox are you using? It seems more likely that you do not have the latest Root CA Certificates installed. I'm frankly surprised that you're not using 31.0. Firefox 27.0 was released back in February, and updating is as simple as going to the menu Help -&gt; About Firefox -&gt; Updates, and then restart the browser.

I don't actually use FF, just have it installed for testing. That's probably the first time I've run it this year. :)

Eric D. said: Looks like an intermediate cert is missing from the bundle presented by the server, I'll ping the devs to address it. <a href="http://www.sslshopper.com/ssl-checker.html#hostnam" rel="nofollow">http://www.sslshopper.com/ssl-checker.html#hostnam</a>... The wiki is still untrusted (three working days later). Is it just taking awhile to fix this, or did you/they forget about this?

The Devs have been at GenCon.

Riley D. said: This should be fixed now. For what it's worth, there was a technical issue with the way that the cert chain was being validated. However, I don't think we were aware of it because it wasn't affecting Firefox or Chrome on any of the usual systems we test. So not sure if your setup is just extra-picky about SSL chains or didn't have a cert we were using or what, but at any rate all should be well now. Yes, it was fixed a few days ago. As I said before, I'm using the latest Firefox version, while you didn't, but in addition to that, yes, my computer is set up to be extra picky. I'm not fond of the idea of hackers hijacking for example your wiki. That happened to JayIsGames a few years ago, and everyone who visited their page got infected with a virus.