[WLUG] 'Forbidden' website

Jim Irrer irrer at umich.edu
Sun Dec 3 18:18:43 EST 2017 

The different IP addresses and using an IP address instead of the URL makes
sense.

The proxy update theory does not quite work.  The fact that I can get to
the web site using
both my tablet (iPad) and an old laptop with a wired connection says to me
that the problem
is in the desktop.  So I'm still stuck.  Hope this is not some sort of
malware.

Thanks,

- Jim

Jim Irrer     irrer at umich.edu       (734) 647-4409
University of Michigan Hospital Radiation Oncology
519 W. William St.             Ann Arbor, MI 48103-4943

On Sun, Dec 3, 2017 at 4:49 PM, Carl T. Miller <carl at carltm.com> wrote:

> Apparently the moosjaw website is hosted on a website
> which uses a Content Delivery Network (CDN).  Depending
> on your location and/or your ISP you will get different
> IP addresses.  This ensures that you connect to a web
> proxy server that is close to you.
>
> It's possible that there is a problem with the actual
> website and the problem is slowly being updated on the
> proxy servers.  It's also possible that it's one or
> more proxy servers misconfigured.  In an event, all you
> can do is wait and hope that it gets fixed soon.
>
> By the way, it's not surprising that you got the error
> message you saw when using https to connect to an IP
> address.  Although certificates can be created for IP
> addresses, they are typically only created for domains
> or hostnames.
>
> Since they probably host many websites, connecting to
> an IP address is not likely to open the website you
> want to see.
>
> c
>
>
> Jim Irrer wrote:
> > Hi -
> >
> > I'm trying to unravel a web security problem on my home desktop Xubuntu
> > machine.
> >
> > When I try to visit https://www.moosejaw.com/ I get:
> >
> >
> > *Error Code: 403 (Forbidden )Server stopped processing your
> > request(ID:2068051582). *
> >
> > Pinging it gets:
> >
> > ping www.moosejaw.com
> > PING b2b57520ef4f01311ce112313d08f98b.yottaa.net (204.2.133.51) 56(84)
> > bytes of data.
> >
> > I don't know if this is relevant, but pinging from a different host on a
> > different network gets a different IP:
> >
> > ping www.moosejaw.com
> > PING b2b57520ef4f01311ce112313d08f98b.yottaa.net (204.2.131.91) 56(84)
> > bytes of data.
> >
> > It also fails on the desktop if I use a different account or different
> > browsers. I have also tried completely
> > erasing all browser history, but it still fails.
> >
> > If I try to use my tablet from home on the same network as the failing
> PC,
> > it works fine, so it would seem
> > to be confined to my desktop PC.
> >
> > Any ideas?
> >
> > One more thing I tried was to try to browse to https://204.2.133.51/ ,
> but
> > got the response:
> >
> > Your connection is not secure
> >
> > The owner of 204.2.133.51 has configured their website improperly. To
> > protect your information from being stolen, Firefox has not connected to
> > this website.
> >
> > Learn more…
> >
> > Report errors like this to help Mozilla identify and block malicious
> sites
> >
> > 204.2.133.51 uses an invalid security certificate.
> >
> > The certificate is only valid for the following names:
> >   www.yottaa.net, *.elementbrand.com, *.elementjapan.com,
> > *.gregzammuto.com,
> > *.rvca.com, ac-dc.power.com, au.billabong.com, cd.honestqa.com,
> > cdn.burlingtoncoatfactory.com, cert-3.yottaa-support.net,
> > development.joann.com, f1.ebags.com, gate-driver.power.com,
> > igbt-driver.power.com, led-driver.power.com, medelita.gscadmin.com,
> > prod.shoplc.com, qa.mountainsteals.com, rad.ebags.com,
> > rewards.moosejaw.com,
> > stage-cdn.burlingtoncoatfactory.com, stage.offbroadwayshoes.com,
> > stage.pepboys.com, stage.shoebuy.com, stage.shoes.com,
> > static-dev63-image.shoplc.com, tags.ebags.com, thursdayboots.com,
> > traffictest.ebags.com, www.diningbycandlelight.com, www.eagleinvsys.com,
> > www.evemattress.co.uk, www.jny.com, www.jockey.ca, www.joesjeans.com,
> > www.judaica.com, www.jwines.com, www.killcliff.com, www.lnt.com,
> > www.mileskimball.com, www.moosejaw.com, www.mountainsteals.com,
> > www.officefurniture.com, www.power.com, www.samsonite.com.hk,
> > www.samsonite.com.sg, www.samsonitemall.co.kr, www.scentiments.com,
> > www.shoebuy.com, www.shoes.com, www.sleeptrain.com, www.tillys.com,
> > www.watties.co.nz, www.yummicandles.com, yottaa.net
> >
> > Error code: SSL_ERROR_BAD_CERT_DOMAIN
> >
> >
> > Thanks,
> >
> > - Jim
> >
> > Jim Irrer     irrer at umich.edu       (734) 647-4409
> > University of Michigan Hospital Radiation Oncology
> > 519 W. William St.             Ann Arbor, MI 48103-4943
> > ______________________________________________________
> > washlug mailing list    washlug web site
> > washlug at washlug.org     www.washlug.org
> > http://linux.marcdatabase.com/mailman/listinfo/washlug
> >
>
>
> ______________________________________________________
> washlug mailing list    washlug web site
> washlug at washlug.org     www.washlug.org
> http://linux.marcdatabase.com/mailman/listinfo/washlug
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://linux.marcdatabase.com/pipermail/washlug/attachments/20171203/370f326e/attachment-0001.html>

More information about the washlug mailing list