"Whats that?" you mutter staring through your coffee steam.

Long story short; Symantec, the world famous company offering a wide range of security products, has lost some reputation in recent times. This includes issuing some misused and/or suspicious SSL certificates.

This has resulted in the mainstream internet browsers (Google Chrome, Mozilla Firefox etc..) dropping Symantec's CA (Certificate Authority) trust certificates.

This means that every SSL certificate (think https) issued by Symantec will no longer be trusted. If you are still using any Symantec SSL certificates on any of your servers, you have only a matter of days to replace them with new certificates from any of the other big Certificate Authorities, else you will fall off the edge of the Discworld into the abyss.

Okay, maybe not quite so dramatic, but your website will stop working which could be just as bad.

And there are still millions of websites using Symantec SSL certificates.

To check who your CA (Certificate Authority) is, you can click the padlock in most browsers and look out for the “Issued by” field, which will tell you the issuing Certificate Authority. You need to take action if this is listed as either of:

  • Symantec
  • GeoTrust
  • Thawte
  • RapidSSL

Should you need a replacement SSL certificate, this is just one of the services 4D are able to offer.

If you need further assistance with how to update an SSL certificate, or systems support, please drop us a message.

The whole backstory to this is quite big, and a long read. We’ve included some links to further material should you be interested:

Are you ready for the Symantec distrust? February 16, 2018

The final Symantec distrust is coming - September 24, 2018