I've found that https://ftp.dd-wrt.com works, ish... It still gives a cert expired error, but you can add an exception for it as it's not using HSTS, whereas https://download1.dd-wrt.com is using HSTS, so no way to override
I've found that https://ftp.dd-wrt.com works, ish... It still gives a cert expired error, but you can add an exception for it as it's not using HSTS, whereas https://download1.dd-wrt.com is using HSTS, so no way to override
We can still download btw, but this error always occurs.
I say that, but downloads started working without the error all of a sudden. Unknown if the "Proceed Anyway" choice was remembered or if it's working as expected. Regardless, its been downloading over https the entire time.
Joined: 06 Oct 2011 Posts: 29 Location: Belfast, Ireland
Posted: Thu Aug 24, 2023 14:11 Post subject:
itwontbewe wrote:
when you proceeded anyway it sets an exemption for the site
you have to manually remove the exemption
the cert is still expired
Looks like https://download1.dd-wrt.com & https://ftp.dd-wrt.com use the same cert, but download1 has HSTS configured, which prohibits setting an exemption, ftp doesn't, which means an exemption can be set, but correct & agreed, it would need to be removed manually after, generally not a good thing to leave in place long term!
forun.dd-wrt.com, reg.dd-wrt.com, wiki.dd-wrt.com, support.dd-wrt.com, & shoparchiv.dd-wrt.com all share a cert too that's valid from 2023-08-08 to 2023-11-06, haven't checked if they're using HSTS, H2, TLS 1.3 etc _________________ All the best,
The problem should be resolved please clear browser cache (CTRL+F5)
I too was presented with the HSTS crap and could not proceed. First time for this.
After clearing cache (ctrl+f5) I got the option to "proceed anyway" and all is well.
the invalid certificate is still used for the download URLs.... so nothing was solved at all and there is no reason to spam the thread.
The certificate was often invalid in the past and I'm pretty sure that the admins have already been informed by email and know how to renew the certificate and fix the problem.
Upload your webserver logs, certs and keys, and we can debug it.
Coming from you, this is highly ironic <lol> _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
_________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
