Results 1 to 23 of 23
Like Tree23Likes
  • 1 Post By Yelta
  • 1 Post By coffeechris
  • 4 Post By deegee
  • 1 Post By Dimal
  • 1 Post By milton
  • 1 Post By flynnaus
  • 3 Post By Andy
  • 3 Post By fromthebeanbag
  • 3 Post By Andy
  • 2 Post By Andy
  • 2 Post By Andy
  • 1 Post By speleomike

Thread: CoffeeSnobs - BeanBay access problems?

  1. #1
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1

    Angry CoffeeSnobs - BeanBay access problems?

    Gene Cafe Coffee Roaster $850 - Free Beans Free Freight
    I just received another report of people having problems with the secure connection to BeanBay.
    The first report was a month ago and there have been another couple since. All of them were on Firefox and some were on Chrome too.

    ---- Latest one -----------


    • I have been able to access the site using Internet Explorer.
    • Is there a known issue with Chrome and Firefox?
    • I can send pics of the browser messages if you like.


    In Chrome I get message that "This site can't be reached", "beanbay.coffeesnobs.com.au unexpectedly closed the connection." and "ERR_CONNECTION_CLOSED". I have tried reloading a number of times. I have logged into Coffee Snobs.
    In Firefox I get "Secure Connection Failed" and "The connection to beanbay.coffeesnobs.com.au was interrupted while the page was loading.".

    ----------------------------

    Cookies, VPN and Antivirus/Internet Secutity packages have been the fixes but no real pattern.

    The Internet is full of similar reports dating over 3-4 years and there isn't a clear single fix (that I can find)

    Anyone here have the problem and fixed it?

  2. #2
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    This was a fix in Firefox for someone else.


    check your TLS level setting:
    (1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful.
    (2) In the search box above the list, type or paste TLS and pause while the list is filtered
    (3) If the security.tls.version.max preference is bolded and "user set" to some value other than 3, right-click it to restore the default value of 3

  3. #3
    Junior Member
    Join Date
    Apr 2012
    Location
    Brisbane QLD
    Posts
    8
    Thanks Andy for posting this.
    I have found the solution in my case:
    - I have Bitdefender Total Security installed
    - I went it to its "Protection Features" dashboard and to "Online Threat Protection"
    - I clicked "Exceptions" and added the url https://coffeesnobs.com.au to the list of exceptions.
    Now Beanbay page opens just fine in both Chrome and Firefox.
    Other info:
    - I didn't have a VPN activated.
    - In Chrome, I have selected "Always allow https://coffeesnobs.com.au to set cookies" and clicked Done. However, the red cross mark still appears at the icon in the address bar.
    Thanks again.

  4. #4
    Senior Member Yelta's Avatar
    Join Date
    Jun 2009
    Location
    Moonta SA.
    Posts
    6,531
    As a matter of interest Andy, I'm able to access BeanBay without any problem.

    Using FireFox, Windows 10 on a desktop machine.

  5. #5
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    Quote Originally Posted by gahobbsau View Post
    I have found the solution in my case:
    - I have Bitdefender Total Security installed
    - I went it to its "Protection Features" dashboard and to "Online Threat Protection"
    - I clicked "Exceptions" and added the url https://coffeesnobs.com.au to the list of exceptions.
    Now Beanbay page opens just fine in both Chrome and Firefox.

    Great troubleshooting!
    I'm sure that will help someone else too.

    I suspect that most "total security" packages could break the HTTPS (SSL) to see what traffic is being sent, by setting an exception it won't try a "look inside" the connection.

    Hopefully we can build a list of fixes in this thread as they all seem similar but different.

  6. #6
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    Quote Originally Posted by Yelta View Post
    As a matter of interest Andy, I'm able to access BeanBay without any problem.

    Using FireFox, Windows 10 on a desktop machine.
    Yeah, I'm sure that 99.???% of people are fine as we have 1200 people on site at any given time and one a week (that we hear of) that can't.

    It's awfully frustrating for those that could access it previously though.

    The first time I heard about this the CS'r gave up because it worked okay on her phone. So it's good to get at least one fix in here, might have been the same issue on her PC.

  7. #7
    Senior Member Yelta's Avatar
    Join Date
    Jun 2009
    Location
    Moonta SA.
    Posts
    6,531
    I've found settings in Ad blockers can cause a problem at times, causing pages to load incorrectly or in some instances fail to load at all, worth considering.
    Andy likes this.

  8. #8
    Senior Member coffeechris's Avatar
    Join Date
    Jul 2011
    Location
    Melbourne
    Posts
    714
    Quote Originally Posted by Yelta View Post
    As a matter of interest Andy, I'm able to access BeanBay without any problem.

    Using FireFox, Windows 10 on a desktop machine.
    Im with Yelta, I have no problems entering through on chrome, Firefox or IE. Win 10
    Andy likes this.

  9. #9
    Senior Member deegee's Avatar
    Join Date
    Sep 2012
    Location
    Brisbane Southside
    Posts
    336
    G'day Andy,
    I have no problem with BeanBay using either Firefox or Opera, but I've been trying a Firefox derivative called Pale Moon and while I can enter the main CS site with it, I can't get into Beanbay.

    The error message is :- Secure Connection Failed
    The connection to beanbay.coffeesnobs.com.au was interrupted while the page was loading.
    The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
    Please contact the website owners to inform them of this problem.

    A bit of research on the developers forum showed several user queries about this and other similar messages.

    The developer replied by adding the following to the FAQ -

    Why do some secure sites fail to connect on the latest version of Pale Moon ????

    Since some people run into issues with secure servers in 25.0.2 and later, this FAQ entry provides an answer for three important issues with websites and Pale Moon's security preventing connections from being established. To see what applies to you, please check the specific error on the connection failure screen. Also, before writing to us for a support request if it is covered by this FAQ, take a moment to do what the error screen says: Contact the website owners and inform them of this problem. Secure connection errors are almost always an issue that has to be solved by the server operators and is not an issue in the browser.


    1. Connections to secure servers (https) that might have worked prior to V 25.0.2 may stop working in V 25.0.2 and later.
      You may get errors like "Connection interrupted while the page was loading" or "ssl_error_bad_mac_read" and similar.
      This is caused by 25.0.2 disabling the SSL 3.0 protocol for secure connections.
    2. Connections to secure servers that might have worked prior to 25.3 may stop working in 25.3 and later.
      You are getting an error indicating "ssl_error_no_cypher_overlap" or "Connection interrupted while the page was loading".
      This is caused by 25.3 disabling the RC4 encryption ciphers for secure connections.
    3. Connections to secure servers that might have worked prior to 25.5 may stop working in 25.5 and later.
      You are getting an error indicating "ssl_error_weak_server_ephemeral_dh_key".
      This is caused by 25.5 no longer accepting export-grade DH keys and fixing the Logjam vulnerability.
    4. Connections to secure servers that might have worked prior to 26.4.1 may stop working in 26.4.1 and later.
      You are getting an error indicating "ssl_error_no_cypher_overlap" or "Connection interrupted while the page was loading".
      This is caused by 26.4.1 disabling the 3DES encryption ciphers for secure connections.


    So it seems this browser is following the most recent security protocols and is copping a bit of flack from some users.
    It also seems that very few other browsers are doing the same, probably because they don't want the flack.
    Or, perhaps they have developed their own security measures within their browser code which makes them safe.
    Andy, Dimal, JoeB and 1 others like this.

  10. #10
    Mal Dimal's Avatar
    Join Date
    Oct 2004
    Location
    Warwick, QLD
    Posts
    16,443
    Thanks deegee...

    Fixed my issue in Firefox. Firefox bug reporting pages don't mention the possibility of this being the issue; that I could find anyway...

    Thanks mate and thanks to Andy too,
    Mal.
    Andy likes this.

  11. #11
    Junior Member
    Join Date
    Nov 2012
    Posts
    3
    I was having similar problems not being able to get into BeanBay. gahobbsau gave me the solution to BitDefender though I also had to add beanbay.coffeesnobs.com.au to the exceptions. All good now. Thanks.
    Andy likes this.

  12. #12
    Junior Member
    Join Date
    Jul 2012
    Location
    Tasmania
    Posts
    5
    I canít get on to Bean Bay either Andy.
    Iím using my iPad Pro via Safari.
    Frustrating as I need to place another order before the shakes start!
    Ken
    E4671C7D-5EDA-4AB8-AFAA-8DB8820CB93C.jpgE4671C7D-5EDA-4AB8-AFAA-8DB8820CB93C.jpg

  13. #13
    Senior Member flynnaus's Avatar
    Join Date
    May 2008
    Location
    Sydney
    Posts
    3,959
    Yes, seems to be a security certificate problem. Andy is away at the moment and he may not see these posts anyway. Best to use the Contact Us form which I have just done.

  14. #14
    Senior Member Yelta's Avatar
    Join Date
    Jun 2009
    Location
    Moonta SA.
    Posts
    6,531
    I received the Security certificate message as well when I tried to connect with BeanBay a few minutes ago, FireFox allows you to exempt the BeanBay page, you can then gain access.

    Unsure of whether there are any issues in doing this.

  15. #15
    Senior Member flynnaus's Avatar
    Join Date
    May 2008
    Location
    Sydney
    Posts
    3,959
    The security certificate "expired on Thursday, 7 March 2019, 11:48:18 pm. "
    Yes, you can apply an exception but best to wait until its fixed to avoid any risks in case Beanbay was hacked
    Yelta likes this.

  16. #16
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    This is Paula (as Andy is still away and unable to be contacted).
    I am aware of the Beanbay problem and we are working on it.
    Hopefully all will be back up and running soon. I will post again when I have an update.
    Thanks for your patience, Cheers Paula
    Dimal, Javaphile and Yelta like this.

  17. #17
    Not a coffeeroaster fromthebeanbag's Avatar
    Join Date
    Jul 2004
    Posts
    114
    Hi everyone, Fady and myself are working through this issue for Paula while andy is away. Beanbay hasn't been hacked and as a workaround, you can just click though the warnings and you'll get you into beanbay. While it's good to be cautious when seeing this message, your personal details are still safe, they are actually kept on the forum server anyway...

    Once I've finished my day job, i'll be onsite to update the expired certificate.

    Cheers
    Dave.
    Dimal, Javaphile and Yelta like this.

  18. #18
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    Hi Everyone,

    Dave Here Again.. We've put this in the too hard basket to solve for tonight. It will get resolved some time over the weekend. As mentioned before, your information is safe, and we haven't been hacked. All is good, just a certificate expiry, so clicking through the warnings is ok..

    Cheers
    Dave.

    p.s. Just been drinking Ethiopia Sidamo Ardi Naturals.. Very Nice drop...
    Dimal, Javaphile and Yelta like this.

  19. #19
    Senior Member speleomike's Avatar
    Join Date
    Nov 2005
    Location
    Sydney
    Posts
    908
    Hi

    It seems simple. CoffeeSnobs have not renewed their Lets Encrypt cert. It has expired as flynnaus pointed out. It's a simple fix that they will need to do. I also use lets Encrypt for a dozen sites. It's excellent.

    Mike

  20. #20
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    The "real" Andy here this time.

    It's all fixed now!

    ---
    Re: "avoid any risks in case Beanbay was hacked"

    BeanBay wasn't hacked and BeanBay has never held anything interesting ever.
    We don't ask for your banking details, nor your credit card number. From day one that was a decision that it was always best to have banking and PayPal handle the security of dangerous data, we have only ever had about as much information as you would find in the public phone book (shipping address, name, email address) and I guarantee a whole lot less than you gave to Facebook or linkedin.

    Re: "CoffeeSnobs have not renewed their Lets Encrypt cert"

    Yes, the auto renew didn't work and of course it happened on the only week in the year that I'm totally isolated off-line (zero phone, zero internet).

    Thanks heaps to Dave and Paula for donating a pile of time to try and troubleshoot the problem until I appeared on this planet again. We'll sort a better renew/cert before this one expires too!

    All back to normal, BeanBay will show a valid certificate when you go to it now.

    Sorry for the hassle everyone.
    Dimal and Javaphile like this.

  21. #21
    Senior Member flynnaus's Avatar
    Join Date
    May 2008
    Location
    Sydney
    Posts
    3,959
    Quote Originally Posted by Andy View Post
    Re: "avoid any risks in case Beanbay was hacked"
    Sorry, I didn't mean to imply any fault with CS. Even though it was an expired security certificate, I offered general advice because I know security certificates can be hacked and thought it was better to wait for advice first.

  22. #22
    CoffeeSnobs Owner Andy's Avatar
    Join Date
    Mar 2004
    Location
    Internet
    Posts
    16,489
    Blog Entries
    1
    All good but ambiguous posts can start a stampede and panic (just like the stupid browsers that scare users when they have nothing stored here).

    My real point is even if everything we know about our customers was published it would be less than your current phone book entry. There is really no personal information kept here.

    At worse if we were hacked, the hacker could order and pay for coffee and ship it to your house!
    Dimal and Javaphile like this.

  23. #23
    Senior Member speleomike's Avatar
    Join Date
    Nov 2005
    Location
    Sydney
    Posts
    908
    Hi

    > Yes, the auto renew didn't work and of course it happened on the only week in the year that I'm totally isolated off-line (zero phone, zero internet).

    That's fine. It happens :-) On the sites I run I renew them all manually every 3 months. I didn't want to have a script running as root automatically. I renew the certs (not as root) and then install them myself with my own script as root. I figure that the many 3rd party Lets Encrypt scripts that users use are a prime target themselves for being Trojaned.

    Nice to see it all working again :-) So many great posts to read and even the odd funny one.

    Mike
    Dimal likes this.



Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •