Privacy Error



  • I am not even sure if it is pfBlockerNG (although, its the only package I am running so I have to assume it is), and I am not sure when this started happening, but if I try and go to a google doc or sheet, or even just now "https://www.tenforums.com/general-support/13611-windows-10-sleep-shortcut.html" (have had this issue with other websites as well), Chrome throws up:

    "Your connection is not private

    Attackers might be trying to steal your information from www.tenforums.com (for example, passwords, messages, or credit cards). NET::ERR_CERT_AUTHORITY_INVALID"

    I am a noob pfsense user, and I am not even sure how to diagnose what is causing this, but like I said, I have to assume its pfblockerNG.

    Any ideas? Seeing as it has happened for DAYS with google docs, I have to assume its my end, not googles lol.



  • Ok, to add some detail, looks like tenforums is outright being blocked, it is redirecting me to the 1x1 pixel website (I forget what that is called, but I know what it implies). So that is I guess a place to start, its blocking the IP outright. Not sure why google docs have issues (but google drive and other google software hasn't given me issues).


  • Moderator

    Looks like hpHosts has listed that domain:

    grep "tenforums.com" /var/db/pfblockerng/dnsblorig/*
    /var/db/pfblockerng/dnsblorig/hpHosts_MMT.orig:127.0.0.1        tenforums.com
    /var/db/pfblockerng/dnsblorig/hpHosts_MMT.orig:127.0.0.1        www.tenforums.com
    

    You can goto the pfBlockeNG Alerts tab and whitelist that domain.

    The hpHosts MMT feed details:
    This file contains sites involved in misleading marketing (e.g. fake Flash update adverts) listed in the hpHosts database This should ONLY be downloaded by those wanting to block misleading marketing sites and nothing else, and requires manual merging.

    If you using the hpHosts (zip) feed. It includes all of the hpHost categories. You can remove the full category feed and add the specific category feeds that suit your network needs…  See this URL for details:

    https://hosts-file.net/?s=Download



  • Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?



  • @LIGISTX:

    Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

    Never mind, it is also hpHosts. I need to up my pfsense game. I use it because I know its secure, but I have not put in enough of my own effort.


  • Moderator

    @LIGISTX:

    Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

    The Alerts tab will report what is being blocked.

    You can use the same grep command above and change the domain to see if its listed.

    or

    host -t A example.com
    

    If that replies back with the DNSBL VIP address, then its blocked via DNSBL. It could also be blocked by an IP list… So the Alerts tab is the tool you need to use...



  • @BBcan177:

    @LIGISTX:

    Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

    The Alerts tab will report what is being blocked.

    You can use the same grep command above and change the domain to see if its listed.

    or

    host -t A example.com
    

    If that replies back with the DNSBL VIP address, then its blocked via DNSBL. It could also be blocked by an IP list… So the Alerts tab is the tool you need to use...

    You are awesome. Thanks!


  • Moderator

    @LIGISTX:

    You are awesome. Thanks!

    Anytime… Thanks for using my package  8)



  • @BBcan177:

    @LIGISTX:

    You are awesome. Thanks!

    Anytime… Thanks for using my package  8)

    Now I just need to figure out snort  :-X


Log in to reply