Visitor
•
6 Messages
Unmatching Security Certificate?
Is the security certificate used by Xfinity/Comcast for customer email outdated or incorrect?
I have a paid subscription to Bitdefender Total Security, which is one of the best internet security/anti-malware programs available.
Whenever I LOG OUT of my Comcast/Xfinity email, I am automatically redirected by Comcast to https://xfinity.comcast.net/
and the following Warning pops up from my security program:
Web Protection by Bitdefender
Suspicious page blocked for your protection
Your connection to this web page is not safe due to an unmatching security certificate.
This means that the certificate was issued for a different web address than the one it is being used for, and you run the risk of exposing your data by accessing this page.
XfinityBradM
Official Employee
•
875 Messages
2 years ago
@ComcastCustomer99 There are no known issues currently with our Xfinity Homepage. The web domain xfinity.comcast.net re-routes to xfinity.com/overview as that is our homepage. What web address are you using to access your Comcast email address?
0
User_Customer99
Visitor
•
6 Messages
2 years ago
@XfinityBradM:
I log in through https://connect.xfinity.com/ which is what a Comcast technical support representative told me to use.
However when I log out Xfinity/Comcast automatically redirects me to https://xfinity.comcast.net/ and as I mentioned in my original post that is where I see the Security Warning. See my original post for the contents of the Security Warning.
Do you have the ability to actually see the Security Certificate in question?
2
0
BruceW
Gold Problem Solver
•
26.3K Messages
2 years ago
And yet, attempts to reference that link produce: "Firefox does not trust this site because it uses a certificate that is not valid for xfinity.comcast.net. The certificate is only valid for the following names: a248.e.akamai.net, *.akamaihd-staging.net, *.akamaihd.net, *.akamaized-staging.net, *.akamaized.net":
Please be aware that there are 2 kinds of responses in this Forum: Replies and Comments. When you Comment on a post by scrolling down to "Comment on this post here...", I am notified of your response. But if you select Reply, I am NOT notified and may not be aware of your response.
(edited)
0
NoGoodNamesLeft4Me
Contributor
•
72 Messages
2 years ago
That sounds a lot like some links and/or certificates didn't get set to the production values when that portion of the site was deployed. The ***-staging.net values make me think that. That's typical of the names of the servers used when testing a new set of pages (on a "staging" server). As the site is deployed to production, the links and certificates should get substituted with the production values. That may not be it, but it really seems like it.
0
user_07a67b
Visitor
•
1 Message
2 years ago
This issue is still happening!!
I got am email reminding me to update my payment method to keep a $10/mo discount, it contained a link to https:/xfinity.comcast.net which results in the untrusted cert/NET::ERR_CERT_COMMON_NAME_INVALID error.
IF you go to http://comcast.net it properly redirects to https://xfinity.com
IF you go to https://xfinity.comcast.net (the one in my email!!) OR https://comcast.net you receive the cert error mentioned 5mo ago by OP.
Seems like xfinity/comcast dont really care about proper certificate security.
I thought I was being fished but whois says that comcast.net is their domain, cant imagine what grandma would do when getting this error.
fun.
2
0
user_565540
2 Messages
2 years ago
I'm getting a certificate error as well from my ESET antivirus software, it's giving me the error "Website certificate revoked" when trying to login.
When I hit "idm.xfinity/com/myaccount/creat-uid?token=ey..."
it says "the certificate used by this server has been marked as untrustworthy and the connection is not safe", and doesn't allow me to proceed.
0
0
BruceW
Gold Problem Solver
•
26.3K Messages
2 years ago
Your message was posted as a comment on a 5 month old topic in the Email forum. You'll be more likely to get help by starting a new topic in the "Sign-In and Account Management" forum at https://forums.xfinity.com/topics/signin-and-account-management/602d5700e6b3965d18e3a5af.
Please be aware that there are 2 kinds of responses in this Forum: Replies and Comments. When you Comment on a post by scrolling down to "Comment on this post here...", I am notified of your response. But if you select Reply, I am NOT notified and may not be aware of your response.
1
0