I am constantly getting these warning from Safari not to open web pages, when I know for sure they are legit https:// How can I stop Safari from doing this? I'm on my MacBook Air, both Safari & OS are the latest versions. SEE ATTACHED:
Thank you, Linda
[Edited by Moderator]
MacBook Air 13″, macOS 15.4
The (intended) website is secure, and is protected with TLS. The specified website is misconfigured.
The Squarespace certificate associated with the webpage you were attempting to access is not trusted.
Some general Squarespace TLS troubleshooting info:
https://support.squarespace.com/hc/en-us/articles/360028492471-Troubleshooting-SSL
Using the local TLS troubleshooting tools, it’s the added www present in the URL you are specifying that’s causing the issues here. Remove that as it is unnecessary here, and the existing certificate will match to domain and the connection will work without issue and without warning.
Alternatively, ask Squarespace to allow users’ adding www with their TLS certificate used here.
For how to access a trust-blocked website (with a mismatched cert, or no cert, or some other issue) without the warning blockage, attempt the connection, then tap on the address bar, and change the https:// {rest of URL} to http:// {rest of URL}
Any data you receive or send related to that website (when accessed via http, without TLS) is trivial for anybody connected anywhere between your Mac and that website to monitor and log, and even to change, including the contact info section shown on that webpage, as well as whatever content changes a malicious intermediary might want to insert.
For the website admin:
For yourself:
macOS 15.6 is current. Please consider updating.
Caveat: matching (trusted) certificates just mean the connection is secure. Not that the website is at all trustworthy.
Gosh, and I just love TLS and certificates and website configuration or specification errors. Such fun.
The (intended) website is secure, and is protected with TLS. The specified website is misconfigured.
The Squarespace certificate associated with the webpage you were attempting to access is not trusted.
Some general Squarespace TLS troubleshooting info:
https://support.squarespace.com/hc/en-us/articles/360028492471-Troubleshooting-SSL
Using the local TLS troubleshooting tools, it’s the added www present in the URL you are specifying that’s causing the issues here. Remove that as it is unnecessary here, and the existing certificate will match to domain and the connection will work without issue and without warning.
Alternatively, ask Squarespace to allow users’ adding www with their TLS certificate used here.
For how to access a trust-blocked website (with a mismatched cert, or no cert, or some other issue) without the warning blockage, attempt the connection, then tap on the address bar, and change the https:// {rest of URL} to http:// {rest of URL}
Any data you receive or send related to that website (when accessed via http, without TLS) is trivial for anybody connected anywhere between your Mac and that website to monitor and log, and even to change, including the contact info section shown on that webpage, as well as whatever content changes a malicious intermediary might want to insert.
For the website admin:
For yourself:
macOS 15.6 is current. Please consider updating.
Caveat: matching (trusted) certificates just mean the connection is secure. Not that the website is at all trustworthy.
Gosh, and I just love TLS and certificates and website configuration or specification errors. Such fun.
In fact I suggest that website is not legitimate. It is a redirect from Facebook, a cesspit in itself, but that's beside the point. A Facebook link you clicked is redirecting to a site that is not secure. "sereneinfrance" is part of its URL.
The warning is legitimate and should be taken seriously.
(I also have Macaffe on my laptop.)
Please get rid of it. It's a scam. It's not helping. Rule 1 of Macs is don't install junk.
John Galt has the correct answer, the website Facebook is directing to is not secure. It is NOT a https website, and Safari just saved you from a potential compromise by believing you were going to a secure website.
The question you need to be asking is why you were being directing there in the first place and who is responsible for getting you to click that link. Facebook did not protect you, but Safari did.
Who is your internet provider? I sometimes see that because Verizon uses some version of McAfee that chokes on some perfectly legitimate websites.
I Have Xfinity. Since you asked, I queried about Xfinity and if they put any 'add ons' onto my service, and it looks like they do. Here's the answer I got….. could this be what's preventing me to just being able to load up a website on my Safari Browser? (I also have Macaffe on my laptop.)
" If you rent a compatible xFi Gateway and are an Xfinity Internet customer, you automatically have xFi Advanced Security protecting your home network. You can also access features and manage settings within the Xfinity app"
Has anybody else had problems with Safari & Xfinity?
Thanks, Linda
So, it sounds as Xfinity does the same thing as Verizon. What happens when you try to access the settings in the Xfinity app?
How do I stop Safari from warning about trusted sites?
