• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

XF 1.5 Cloudflare SSL issues

Amin Sabet

Well-known member
#1
I just changed over all 6 of my XenForo forums to https. I am using the XenForo link proxy and the @digitalpoint image proxy.

I have a valid GeoTrust Rapid SSL certificate on my server for each one of the sites, and all showed the green lock in Chrome prior to setting up CloudFlare.

Yesterday I signed the sites up for CloudFlare (Pro) and within the CloudFlare settings chose Full SSL Strict for all six websites.

Three of my sites still show the reassuring green lock in Chrome:

www.talkemount.com

www.fujixspot.com

www.foreverfilm.org

The other three show the yellow triangle (This site uses a weak security configuration (SHA-1 signature) so your connection may not be private):

www.mu-43.com

www.photographerslounge.org

www.leicaplace.com

Would appreciate any help on getting these to work properly. Thanks!
 

Chris D

XenForo developer
Staff member
#2
It's probably a question best asked to the certificate provider and/or CloudFlare to be honest.

upload_2015-9-23_13-53-34.png

The error is suggesting there is a certificate in the chain that is still using SHA-1 which is deprecated and unsupported in favour of SHA-2.