[ Resolved ] What happened with ( most of ) the Avatars ? They are gone !

[Lisandro]

Rednose, you need to clean the certificates stored in your Firefox database.
Then you can reload the page with the new certificates (Chocholo said they released new ones lately).

[Rednose]

The extended screenshot.

Greetz, Red.

[Hermite15]

okay so that was indeed a certificate issue as I first thought, just do as Tech advised, delete anything from avast in Firefox certificate store, and reload a forum page. Weird anyway as I never had any authentication issue with Avast in plain http ...and there's no cert check in http anyway, as none has to be provided, so...

[Hermite15]

that's what you get from Avast in http (no ssl); so your alert is hard to explain

[Rednose]

Where can I find the Firefox certificate database

Greetz, Red.

[Hermite15]

Where can I find the Firefox certificate database

Greetz, Red.

options >>> advanced

[Rednose]

I don't understand

Your certificates was/is empty. I only have a list of organisations. DigiCertInc is the one from Avast.

Greetz, Red.

[DavidR]

DavidR, your post saved the day

http://forum.avast.com/avt/avatar_18134.png
Showed my Avatar. But :

https://forum.avast.com/avt/avatar_18134.png
Showed : see screenshot

So Firefox says the connection is not secure, because the identity of the website can not be confirmed. Adding it as an exception solves the problem. The Avatars are back

But why do I have this problem only with Firefox, and not with other browsers ? Any help and/or info would be appreciated

You're welcome.

It is something to do with your security settings importing https into an http page (mixed security levels, etc.). I don't recall when this use of http(s) for the location of the avatars happened or why, but it certainly had an immediate impact.

Firefox has different security settings, some say they are tighter others just say different. Very recently we had a case of avast alerting on an injected iframe on a web site, yet I and another user couldn't replicate it as we were using firefox and only IE8 (in this instance) seem vulnerable to this injected iframe vulnerability.

Well, funny thing is I don't browse the forum in https.

No you don't browse the forums in https, but the link to the avatars is https so you are effectively accessing a secure site/page and firefox expects a certificate to check. But for some reason it can't check it, as there is now a valid certificate for the avast forums.

If you connect to the forums from an https link in a topic reply notification email, then firefox would have validated the certificate before opening an https page. Since you are already on an http page, this initial certificate check wouldn't have taken place.

[Hermite15]

I don't understand

Your certificates was/is empty. I only have a list of organisations. DigiCertInc is the one from Avast.

Greetz, Red.

look, you must have clicked a link in https, sometimes it happens randomly on this forum and that's when you get the alert, but I just tried manually, and I didn't get any alert, the certificate is valid. I can't see it stored either in Firefox; I don't think that it needs to be stored at all, it will be rechecked online as needed.

edit: I guess it doesn't need to be stored because there's no exchange of personal data between you and the server. The cert will just be checked against the authority that delivered it and is well listed in Firefox if trusted. Your list of imported cert would become just uselessly huge with the time

[Hermite15]

hey David that's right I just checked avatars are on ssl ...I just didn't know that.

[Rednose]

Ok, thank you very much DavidR, Logos and Tech. At least I understand now what the problem is, and what I can do about it

Greetz, Red.

[Hermite15]

okay you're welcome

[Asyn]

http://forum.avast.com/index.php?topic=59111.msg528952#msg528952
asyn

[DavidR]

hey David that's right I just checked avatars are on ssl ...I just didn't know that.

I don't believe that was always the way though, I think they just to be on http.

[DavidR]

Ok, thank you very much DavidR, Logos and Tech. At least I understand now what the problem is, and what I can do about it

Greetz, Red.

You're welcome.

The main thing is that a) you have it sorted now and b) it has identified the exact cause, which may help others in the future should it happen again.