1

Revoked certificate?

I've been getting the following notifications from Bitdefender recently:

"firefox.exe attempted to establish a connection relying on a revoked certificate to dns.nextdns.io. We blocked the connection to keep your data safe since revoked certificates are usually fraudulently obtained or used."

 

On the surface, i don't seem to be affected in my usual internet browsing. Other than these notices (upto hundreds a day) , I don't notice anything annoying yet. NextDNS still seem to be logging and blocking as needed.

 

Should i be worried? Or is this just something that hopefully NextDNS is already aware of and is in the process of issuing valid certificate?

4 replies

null
    • iamMasterWeb
    • 3 days ago
    • Reported - view

    For me, everything was good, then hundreds of notifications from my primary security software. Notifications now average over 500 every few hours at the least, and I've seen it hit 800 +.

    Does anyone think that the Security, and Privacy filters we can turn on in Next DNS dashboard could be causing the issues? Before https://dns.nextdns.io started to be primarily blocked due to a revoked certificate by my primary security software, a bunch of other domains were being blocked. So I turned off some privacy filters, and kept only the Next DNS, and AdGuard ones. Keep in mind, I'm still testing Next DNS, and still on the FREE plan.

    It also seems this issue is an ongoing, intermittent one, maybe due to how Next DNS works in the backend? Or, when they are doing major maintenance work on the platform? This discussion 3 years ago kind of hints to it: https://help.nextdns.io/t/q6hb6qy/dns-nextdns-io-website-certificate-revoked.

    Though, it would be good if someone from Next DNS would address the reported issues with revoked certificates to even confirm or deny that Next DNS is at fault. Whitelisting the domain is not an option for me at this point, since I give my primary security software the benefit of the doubt, false positive or not. I like it to be overly sensitive when it comes to protecting my devices, and data 😁. 

    Does Next DNS even have a support email? Anyone, knows?

    With thanks,

    mw🧑🏽💻

      • NextDNs
      • 3 days ago
      • Reported - view

       could you please say more on the notifications you are getting?

      • iamMasterWeb
      • 2 days ago
      • Reported - view

       Thank you for reaching out.  The security software alerts are all the same now:

      “Suspicious connection blocked: chrome.exe attempted to establish a connection relying on a revoked certificate to dns.nextdns.io. We blocked the connection to keep your data safe, since revoked certificates are usually fraudulently obtained or used.”

      I configured a custom secure DNS settings in Chrome, using a NextDNS URL for DNS-over-HTTPS so I can track traffic by that particular browser. It also serves as a type of “fail-safe” if the Windows OS Wi-Fi  DNSsettings are bypassed due to VPN use.  Though, they use different NextDNS DNS-over-HTTPS URLs so I can see where the traffic is being filtered.

       

      Mind you, connection seems to occur most times, though I think my VPN connection is affected mostly, since it's overly sensitive too. Maybe I am “over configuring”, but I've just been testing out the service, and not all the NextDNS features work for me when I follow the steps.

       

      Incidentally, the Android configuration sometimes, though rarely, gives the error “Can't connect” within the Android settings.  However, the same security software on mobile doesn't produce any “Suspicious connection blocked” alerts.

      Hope this helps.

       

      Thank you,

      mw🧑🏽💻

    • CaptAlien
    • 3 days ago
    • Reported - view

    I am also getting " Security Alert!, invalid certificate detected " on my Android device.

Login to reply

Content aside

  • 1 Votes
  • 2 days agoLast active
  • 4Replies
  • 98Views
  • 5 Following