SSL Encryption question - whois
Results 1 to 4 of 4

Thread: SSL Encryption question - whois

  1. #1
    Senior Member
    Join Date
    Dec 2004
    Posts
    320

    SSL Encryption question - whois

    Heya, got a question about whois and SSL certificates.

    Now, when I check out https://secure.newegg.com/, and look at the encryption details, the certificate is issued by verisign and is all valid, but when I check out whois.sc, it says no valid SSL. The details seems to be in order, but whois.sc doesn't seem to display it. Any idea as to why this is ? I am assuming whois is wrong on this, but I was just wondering why this happens. Everything seems to be in order...
    The fool doth think he is wise, but the wiseman knows himself to be a fool - Good Ole Bill Shakespeare

  2. #2
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,403
    Perhaps there's a bug in the whois.sc' code that checks the SSL certificate?
    Oliver's Law:
    Experience is something you don't get until just after you need it.

  3. #3
    Super Moderator
    Know-it-All Master Beaver

    Join Date
    Jan 2003
    Posts
    3,914
    Hey Hey,

    It's because it's a joke... I'm not sure I'm a big fan of whois.sc after seeing that site and past experiences with it... Whois info doesn't contain SSL or non-SSL.. this is something that the sit e has added... and they've done a poor job of it..

    When you enter secure.newegg.com they're running a whois which means no third level.. they strip it down to newegg.com.... well newegg.com isn't running SSL, secure.newegg.com has the SSL..
    > secure.newegg.com
    Server: ns1.ody.ca
    Address: 216.240.0.1

    Non-authoritative answer:
    Name: secure.newegg.com
    Address: 65.119.30.139

    > newegg.com
    Server: ns1.ody.ca
    Address: 216.240.0.1

    Non-authoritative answer:
    Name: newegg.com
    Address: 216.52.208.185
    I'm guessing that their SSL or non-SSL is a simple matter of 'is port 443 open at the IP?'....

    Whois.sc is a sales site first and foremost.. THey display some interesting information... but they want your money.... If you're legitimately looking for whois information.... check out geektools.com... As for SSL don't rely on a third party site to tell you if it's valid or not... that's just asking for trouble....

    Peace,
    HT
    IT Blog: .:Computer Defense:.
    PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

  4. #4
    Senior Member
    Join Date
    Apr 2004
    Posts
    1,130
    im not sure, but...
    when ive entered on this newegg site ive received that "some items are not secure". If i choose "yes", the page become non-ssl.

    Perhaps whois.sc is assuming "yes" all the time. Just a thought.
    Meu sítio

    FORMAT C: Yes ...Yes??? ...Nooooo!!! ^C ^C ^C ^C ^C
    If I die before I sleep, I pray the Lord my soul to encrypt.
    If I die before I wake, I pray the Lord my soul to brake.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •