Is anyone else getting this message?
Mar 20, 2007 | 10:48 am
#1
Original Poster
Join Date: Jan 2007
Location: YEG
Programs: AC*E and other flirtations
Posts: 41
Is anyone else getting this message?
When I attempt to retrieve my bookings on aircanada.com, I consistently receive the following warning message:
You have attempted to establish a connection with “www.google-analytics.com”. However, the security certificate presented belongs to “www.google.com”. It is possible, though unlikely, that someone may be trying to intercept your communication with this web site.
If you suspect the certificate shown does not belong to “www.google-analytics.com”, please cancel the connection and notify the site administrator.
Is anyone else getting this? And what does it have to do with Google anyway?
You have attempted to establish a connection with “www.google-analytics.com”. However, the security certificate presented belongs to “www.google.com”. It is possible, though unlikely, that someone may be trying to intercept your communication with this web site.
If you suspect the certificate shown does not belong to “www.google-analytics.com”, please cancel the connection and notify the site administrator.
Is anyone else getting this? And what does it have to do with Google anyway?
Mar 20, 2007 | 11:54 am
#2
Join Date: Dec 2005
Location: YOW
Programs: AC*E, Alaska MVP Gold, FPC Premier, SPG Gold
Posts: 659
If you care, let AC.com know about that. There is probably a javascript file being referenced using https: in their code instead of http:, and that is probably the issue...
Mar 20, 2007 | 12:46 pm
#3
Join Date: Jan 2005
Location: YUL
Posts: 582
Google analytics is Google website that tracks the usage of webpages on the internet. It is what, among other functions, the ranking on Google pages when you do a search on Google site.
The error that you received is a warning from the certificate that was issued to Google website is being used by Google analytics website. It is quite OK, unless you don't trust Google at all.
The error that you received is a warning from the certificate that was issued to Google website is being used by Google analytics website. It is quite OK, unless you don't trust Google at all.
Mar 20, 2007 | 3:57 pm
#5
Join Date: Jul 2003
Location: Salish Sea
Programs: DL,AC,HH,PC
Posts: 8,972
Isn't that only if you have the Google toolbar installed ? You can turn it off anyway in the options.
Mar 20, 2007 | 3:59 pm
#6
Join Date: Apr 2002
Location: Vancouver, BC.
Programs: AC*SE, DL_Gold, Hilton_Diamond, Marriott_Platinum
Posts: 187
I would be careful about trusting Google too much.
Google retains data on all searches you do, and performs very sophisticated data mining. California's laws on retaining personally identifiable data was amended to specifically allow Google to be exempted. But I'm a paranoid IT security wonk...
However, I always find it interesting that people who have a poor view of corporations generally, will wholeheartedly trust some like Disney and Google.
Google retains data on all searches you do, and performs very sophisticated data mining. California's laws on retaining personally identifiable data was amended to specifically allow Google to be exempted. But I'm a paranoid IT security wonk...
However, I always find it interesting that people who have a poor view of corporations generally, will wholeheartedly trust some like Disney and Google.
Mar 21, 2007 | 6:54 am
#7
Join Date: Dec 2005
Location: YOW
Programs: AC*E, Alaska MVP Gold, FPC Premier, SPG Gold
Posts: 659
PHP Code:
<!-- Google Analytics Tags -->
<script language="javascript">
if(location.protocol=='http:'){
glink="<scr"+"ipt src='http://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}else{
glink="<scr"+"ipt src='https://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}
document.write(glink);
</script>
<script type="text/javascript">
_uacct = "UA-230216-12";
urchinTracker();
</script>
<!-- Google Analytics Tags -->
Mar 21, 2007 | 8:10 am
#8
Join Date: Feb 2002
Location: YYC
Programs: AC*SE, SPG Plat, National Exec Elite
Posts: 589
When I attempt to retrieve my bookings on aircanada.com, I consistently receive the following warning message:
You have attempted to establish a connection with “www.google-analytics.com”. However, the security certificate presented belongs to “www.google.com”. It is possible, though unlikely, that someone may be trying to intercept your communication with this web site.
If you suspect the certificate shown does not belong to “www.google-analytics.com”, please cancel the connection and notify the site administrator.
Is anyone else getting this? And what does it have to do with Google anyway?
You have attempted to establish a connection with “www.google-analytics.com”. However, the security certificate presented belongs to “www.google.com”. It is possible, though unlikely, that someone may be trying to intercept your communication with this web site.
If you suspect the certificate shown does not belong to “www.google-analytics.com”, please cancel the connection and notify the site administrator.
Is anyone else getting this? And what does it have to do with Google anyway?
PHP Code:
if(location.protocol=='http:'){
glink="<scr"+"ipt src='http://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}else{
glink="<scr"+"ipt src='https://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}
The problem actually lies with Google not having their security certificate configured properly. You could try emailing them but I would imagine that they'll probably have this cleaned up pretty quick on their own.
Mar 21, 2007 | 1:35 pm
#9
Join Date: Dec 2005
Location: YOW
Programs: AC*E, Alaska MVP Gold, FPC Premier, SPG Gold
Posts: 659
PHP Code:
if(location.protocol=='http:'){
glink="<scr"+"ipt src='http://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}else{
glink="<scr"+"ipt src='https://www.google-analytics.com/urchin.js'></scr"+"ipt>";
}
The problem actually lies with Google not having their security certificate configured properly. You could try emailing them but I would imagine that they'll probably have this cleaned up pretty quick on their own.
Apr 18, 2007 | 2:07 am
#10
Join Date: May 2006
Location: North of YYZ
Programs: AC*E, Hertz Gold, SPG
Posts: 102
Couldn't help stick my nose in...
Using mixed (http and https) content will end up with no padlock/SSL UI being shown, because the http: resource could be compromised and used for XSS. I don't think this is anything more than people simply making mistakes either for the URL being used, or for the cert configuration.
end browser-developer-rant
Using mixed (http and https) content will end up with no padlock/SSL UI being shown, because the http: resource could be compromised and used for XSS. I don't think this is anything more than people simply making mistakes either for the URL being used, or for the cert configuration.
end browser-developer-rant