It is currently September 26th, 2020, 8:59 pm

it firm softserve hacked locked down plundered

Release announcements and important news from the developers.
User avatar
Yincognito
Posts: 2629
Joined: February 27th, 2015, 2:38 pm
Location: Terra Yincognita

Re: it firm softserve hacked locked down plundered

Post by Yincognito »

jsmorley wrote: September 14th, 2020, 10:20 pm Yes, but has often been said: "Everyone in the world is crazy except you and me Bob, and lately I've been wondering about you..."
We're wondering about everyone anyway, even ourselves...
User avatar
redorbroder
Posts: 3
Joined: September 14th, 2020, 8:54 am

Re: it firm softserve hacked locked down plundered

Post by redorbroder »

Hello!

Good to hear all is well with SilverAzide!
Couldn't do without his Gadgets Suite!

Maybe off topic but I'm curious why browsers block this:

Code: Select all

Rainmeter-4.4-r3404-beta.exe
Opening "Issuer Statement" links to
https://secure.comodo.net/CPS
Browsers I tested (Firefox, Chrome, Waterfox).
Is this normal?
All certificate looks identical to screenshots from jsmorley shown in here.
Image
Image

Best regards,
redorbroder

Code: Select all

A rough google translation from swedish:
The connection is not private
An attacker could try to steal your information from secure.comodo.net (such as passwords, messages, or credit card information). 
Read more
NET :: ERR_CERT_DATE_INVALID

Help us make the web more secure for everyone by submitting URLs to certain pages you visit, certain system information and certain page content to Google's Privacy Policy
The server's identity as secure.comodo.net could not be verified because its security certificate expired 103 days ago. This may be because the server is incorrectly configured or the connection has been lost. The clock on the computer is currently set to Tuesday 15 September 2020. Is it working correctly? Otherwise, you should reset the computer clock and then refresh the page.

Continue to secure.comodo.net (unsafe)
User avatar
Yincognito
Posts: 2629
Joined: February 27th, 2015, 2:38 pm
Location: Terra Yincognita

Re: it firm softserve hacked locked down plundered

Post by Yincognito »

redorbroder wrote: September 15th, 2020, 11:47 amMaybe off topic but I'm curious why browsers block this:

Code: Select all

Rainmeter-4.4-r3404-beta.exe
Opening "Issuer Statement" links to
https://secure.comodo.net/CPS
Browsers I tested (Firefox, Chrome, Waterfox).
Is this normal?
All certificate looks identical to screenshots from jsmorley shown in here.
Image
Image

Best regards,
redorbroder
Just guessing here, but Comodo's Wiki page might offer some clues about it. It may be nothing or it may be something, but I won't try to find out:
- the official site is listed as comodo.com, this one is comodo.net
- certificate hacking appears associated with Comodo, albeit the section is from a couple of years ago
- the WhoIs page for comodo.com isn't quite identical to the one for Comodo.net

But then, as I said, it could be nothing, although it's a bit strange. This and this seem to offer some sort of an explanation for it. Again, I won't try to find out, better safe than sorry. :???:
redorbroder wrote: September 15th, 2020, 11:47 am Good to hear all is well with SilverAzide!
Couldn't do without his Gadgets Suite!
So SilverAzide is back on DA? If so, that's good news - doesn't change my evaluation on them though. And his Gadgets Suite is available here on the forum as well (actually, downloadable from GitHub), so that was a non-issue.

EDIT: Just checked his gadgets link on DA and doesn't work, so I'm not sure I understood what you meant by "all is well with SilverAzide" - maybe you know something that I don't, or I misunderstood something... :confused:
User avatar
SilverAzide
Posts: 956
Joined: March 23rd, 2015, 5:26 pm

Re: it firm softserve hacked locked down plundered

Post by SilverAzide »

Yincognito wrote: September 15th, 2020, 12:49 pmSo SilverAzide is back on DA? If so, that's good news - doesn't change my evaluation on them though. And his Gadgets Suite is available here on the forum as well (actually, downloadable from GitHub), so that was a non-issue.

EDIT: Just checked his gadgets link on DA and doesn't work, so I'm not sure I understood what you meant by "all is well with SilverAzide" - maybe you know something that I don't, or I misunderstood something... :confused:
LOL, I think he was just saying I'm not quite as dead as DA wants me to be. DA isn't responding to any of my help requests, exactly as JSMorley indicated. I'll just use the Rainmeter forums and GitHub from now on. But most folks found the Gadgets on DA, I suppose via Google searches maybe. I had like 85000 downloads from there.
Gadgets Wiki GitHub More Gadgets...
User avatar
jsmorley
Developer
Posts: 21387
Joined: April 19th, 2009, 11:02 pm
Location: Fort Hunt, Virginia, USA

Re: it firm softserve hacked locked down plundered

Post by jsmorley »

Not sure what is going on with Comodo's website. I think the issue is that the "link" to that page is baked into the three-year certificate that we got from them in 2018, and the site has apparently changed at some point since then. Comodo.net now automatically redirects to Comodo.com for instance. We will be getting a new certificate in February of next year, and I assume it will be corrected then.

The certificate itself is still good, and is an important part of ensuring that you get the right Rainmeter from the right source.

https://www.rainmeter.net
User avatar
Yincognito
Posts: 2629
Joined: February 27th, 2015, 2:38 pm
Location: Terra Yincognita

Re: it firm softserve hacked locked down plundered

Post by Yincognito »

SilverAzide wrote: September 15th, 2020, 1:30 pm LOL, I think he was just saying I'm not quite as dead as DA wants me to be. DA isn't responding to any of my help requests, exactly as JSMorley indicated. I'll just use the Rainmeter forums and GitHub from now on. But most folks found the Gadgets on DA, I suppose via Google searches maybe. I had like 85000 downloads from there.
Ah, I see. Apparently I misunderstand a lot of things today, haha! Including what he said about certificates and which certificate was examined. But nevermind, some interesting things in my next post... :D
User avatar
Yincognito
Posts: 2629
Joined: February 27th, 2015, 2:38 pm
Location: Terra Yincognita

Re: it firm softserve hacked locked down plundered

Post by Yincognito »

jsmorley wrote: September 15th, 2020, 2:00 pm Not sure what is going on with Comodo's website. I think the issue is that the "link" to that page is baked into the three-year certificate that we got from them in 2018, and the site has apparently changed at some point since then. Comodo.net now automatically redirects to Comodo.com for instance. We will be getting a new certificate in February of next year, and I assume it will be corrected then.

The certificate itself is still good, and is an important part of ensuring that you get the right Rainmeter from the right source.

https://www.rainmeter.net
Well, just for fun:
- just checked, Chrome is blocking my Rainmeter download as well (didn't notice before as I'm using a download manager instead for downloads)
- checked with my security solution, nothing found
- checked online and:
screencapture-virusscan-jotti-org-en-US-filescanjob-8v6iln9rvn-2020-09-15-18_46_49.jpg
screencapture-virustotal-gui-file-7d23b860c8e092d84eaa23621a2e0e20ac8feffb7249c02d7a26988215ceafb5-detection-2020-09-15-18_29_02.jpg
Sorry for the large resolution of the 2nd image, it was captured by my webpage screenshot extension, so that all AV vendors are visible.

So, two red dots playing around... :sly:
You do not have the required permissions to view the files attached to this post.
User avatar
jsmorley
Developer
Posts: 21387
Joined: April 19th, 2009, 11:02 pm
Location: Fort Hunt, Virginia, USA

Re: it firm softserve hacked locked down plundered

Post by jsmorley »

You can be certain that the installer for Rainmeter on our site is clean. I never worry a bit about a hit or two from the dozens of really crappy antivirus applications out there.
User avatar
redorbroder
Posts: 3
Joined: September 14th, 2020, 8:54 am

Re: it firm softserve hacked locked down plundered

Post by redorbroder »

It seems to be legit:

https://www.whois.com/whois/comodo.net

Thanks and best regards,
redorbroder

Edit: I use ESET Internet Security and the false positive is within the browsers.
User avatar
Yincognito
Posts: 2629
Joined: February 27th, 2015, 2:38 pm
Location: Terra Yincognita

Re: it firm softserve hacked locked down plundered

Post by Yincognito »

jsmorley wrote: September 15th, 2020, 4:09 pm You can be certain that the installer for Rainmeter on our site is clean. I never worry a bit about a hit or two from the dozens of really crappy antivirus applications out there.
Yep, well, I'll give you a bug to worry about then, in the appropriate section... ;-)
Maybe the bug is tricking those crappy AVs into false positives... :Whistle Just joking, of course. :p