For the last few days I've been getting a SSL warning when accessing HN.<p>http://i.imgur.com/CjEG82Z.png<p>Here's the certificate details screen:<p>http://i.imgur.com/BRWjsvM.png<p>I'm using Chrome 42 on Debian 8.
Maybe something related to Chrome 42 SHA-1 sunsetting?
<a href="http://googleonlinesecurity.blogspot.it/2014/09/gradually-sunsetting-sha-1.html" rel="nofollow">http://googleonlinesecurity.blogspot.it/2014/09/gradually-su...</a><p>Server-side configs seem to be OK:
<a href="https://www.ssllabs.com/ssltest/analyze.html?d=news.ycombinator.com&s=198.41.190.47" rel="nofollow">https://www.ssllabs.com/ssltest/analyze.html?d=news.ycombina...</a><p>Cached chain with SHA-1 certs preferred over SHA-2 sent by server?<p>Maybe these links may help:<p>- <a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774195" rel="nofollow">https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774195</a><p>- <a href="https://code.google.com/p/chromium/issues/detail?id=437733" rel="nofollow">https://code.google.com/p/chromium/issues/detail?id=437733</a><p>My 2 cents
I just tested on Chrome 42 on Debian 8. I'm seeing the exact same certificate as you according to the displayed fingerprints, but I am getting no such warning.