cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Canon forum hacked?

TCampbell
Elite
Elite

I noticed that if you go to https://community.usa.canon.com you get a page with several links... one of which is the "Canon Forum".

 

But if you pick that link, it tries to go to: https://canon.us/YSGl 

 

(Note:  The REAL Canon forums are here:  https://community.usa.canon.com/t5/Canon-Forum/ct-p/Canon_Forum )

 

I'm pretty sure that's not a valid Canon USA url.  If I check it, my browser gives a security warning not to trust the site (becuase the certificate doesn't match the URL).  If I inspect the certificate, I get this:

 

Screen Shot 2018-08-07 at 7.44.15 PM.png

 

I'm reasonably confident that Canon USA isn't running any part of their website using that certificate, nor under the domain name of "canon.us".

 

You may want to have your webmaster check that and do some security scans on your web servers.

 

 

Tim Campbell
5D III, 5D IV, 60Da
13 REPLIES 13

TCampbell
Elite
Elite

BTW, looks like the URL's have been updated to go to the correct locations without giving the certificate warnings.

 

I've been checking this for a few days (just in case it was a matter random probability that could send me to a working vs. non-working server).  It has been behaving correctly each time I check ... so hopefully that means the issue has been resolved.

 

 

Tim Campbell
5D III, 5D IV, 60Da


@johnsmith101 wrote:
It's possible you run more than one real server at "canon.us" (most sites run *at least* two servers to provide high availability ... but may run more). To create a highly available site, a "load balancer" is used to balance traffic between the servers. There are two major categories of load balancers... one is a "geographic load balancer" which is really a special kind of DNS server (e.g. when I request the IP address of "canon.us" it gives ME an IP address of a server ... when YOU requests the IP address of "canon.us" it may give YOU an IP address of a DIFFERENT server.) The other type is a "local" load balancer. These behave a little more like a network switch in that when I connect to an IP address (which it calls a "virtual IP" or "VIP") it actually knows there are a number of real servers (which it calls "real IP" or "RIP") behind the the load balancer.

I almost certain that they use at least two hosting servers.  One hosts the full UI version for PCs, and another hosts a mobile UI version for mobile devices.  Of course, those two hosts would have to access to a shared database.

--------------------------------------------------------
"Fooling computers since 1972."

This is a really old thread, but the long and short of what happened is budURL, the vendor we use to shorten our URLs using the vanity site canon.us, changed their name to bl.ink. That most likely caused a certificate mismatch. We chose the vanity site "canon.us" because we're Canon USA. In the rest of the world, the Canon localities usually use their two letter country identifier somewhere in their URL, like canon.ca, or canon.co.uk. Here in the USA, we do ours kind of backward - usa.canon.com, but it allows us to have the vanity site canon.us as our shortened URLs for social media: canon.us/support for example. The top-level site canon.us only very recently started redirecting to usa.canon.com. As a matter of fact, I only found out about it while writing this reply! 

 

It might not be super technical, but it's what happened. I hope that helps! 

onegold88
Apprentice

Nope! It's working fine here.

Announcements