SSL-problems with https://stats.hivewallet.com/

[dnivi3]

When connecting to https://stats.hivewallet.com/ I receive an SSL-error:

The error message says this:

Technical Details

stats.hivewallet.com uses an invalid security certificate.

The certificate is only valid for the following names:
* .herokuapp.com, herokuapp.com

(Error Code: ssl_error_bad_cert_domain)

[weilu]

Use http://stats.hivewallet.com instead

[dnivi3]

@weilu, nope same problem. It redirects to https://stats.hivewallet.com/

I'm on Mac, Firefox 31.

[weilu]

That's strange. It works fine for me on both chrome and firefox on mac. @tgerring thoughts?

[tgerring]

Verified HTTP works without redirect on iOS/Safari

[mackuba]

Was there any kind of redirect at some point in the past? I've noticed some time ago that browsers (at least Chrome) remember these kind of things and it's very hard to make them forget...

[dnivi3]

Might be related to this: http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

Someone I know had a problem with the above messing up subdomains on their websites.

[dnivi3]

So, any updates on this, @jsuder, @tgerring and @weilu?

[weilu]

I can see how HSTS could limit access to https only on all subdomains -- If I understand HSTS correctly, with the current setting on web.hivewallet.com, the browser is supposed to prevent any traffic to http://stats.hivewallet.com immediately after visiting web.hivewallet.com. However it is not doing it on my browser. I'm not sure why =/