Latest Forum Posts
[VIDEO] Fallout (Amazon / 2024)
last post by Snaps
rip: Steve Albini - 61 heart attack
last post by admars
Clarkson's farm
last post by Par Mizan
How many browsers do you use?
last post by Par Mizan
[VIDEO] Living on Youtube
last post by Snaps
Arsenal 23/24 season
last post by RJS
[VIDEO] Peacemaker
last post by admars
[VIDEO] Shogun the (unnecessary?) Remake!
last post by mbilko
[VIDEO] Star Wars: The Acolyte
last post by Pete-MK
The Responder
last post by admars
My Neighbour Totoro Tickets at West End now
last post by Par Mizan
Boris the not-a-spider
last post by Jitendar Canth
Winning Time: The Rise of the Lakers Dynasty
last post by admars
[VIDEO] Eric
last post by Pete-MK
Duane Eddy RIP
last post by marksparks999
[VIDEO] Star Wars: The Bad Batch
last post by admars

Page 1 of www.ebuyer.co.uk has an incorrect secure certificate

Retailer Reviews Forum

www.ebuyer.co.uk has an incorrect secure certificate

Richard Lloyd (Competent) posted this on Thursday, 11th May 2006, 15:04

I`ve been carrying on a long Enote conversation with Ebuyer customer services about the fact that the new design of their site keeps the user on the domain they entered the site with, even when they go to secure mode where appropriate. Unfortunately, they`ve been quiet on the subject for a week now without fixing the issue, so I thought I`d post it more publicly to see what other people think.

The problem is that Ebuyer can be accessed two ways - via www.ebuyer.co.uk or www.ebuyer.com - and if you click on a link that jumps to secure mode, it goes to the https version of that address. This would be fine, except Ebuyer only have a secure certificate for www.ebuyer.com and *not* for www.ebuyer.co.uk, resulting in a secure certificate warning if you started at www.ebuyer.co.uk. Here`s how to reproduce it:

1. Start up your Web browser from scratch (so you`re not logged in)
2. Go to http://www.ebuyer.co.uk/
3. Click on "Your account" link at top of the page
4. In the Login -> email field in the left hand form, type "a[at]c.b"
(minimal e-mail address needed to submit the page) and click on
the orange "GO" in that left-hand form.
5. Watch your browser pop a secure mode warning that you`re trying to
load in a secure certificate on https://www.ebuyer.co.uk/ that
doesn`t match the actual secure certificate name
(https://www.ebuyer.com/)
6. You can accept that secure certificate and note that even at this point, you`re still on the www.ebuyer.co.uk address!

Note that before the new design was put in place about a month ago, I could start at www.ebuyer.co.uk and not see the warning (it may be that it redirected to https://www.ebuyer.com/ for secure links). Note that www.ebuyer.co.uk has 11,000-odd references on Google and the Order Notes that Ebuyer issue via e-mail (which you can view on an order page) say this at the bottom:

Ebuyer Customer Services
http://www.ebuyer.co.uk

So the "excuse" given to me by someone at Ebuyer that I should use the www.ebuyer.com address only is nonsense. Anyone else think this issue is pretty important and needs to be resolved? Surely it must be hitting customer confidence and ultimately sales to see a cert warning on their www.ebuyer.co.uk address?

Go back to Retailer Reviews Forum threads, or All Forum threads