Server's Certificate is not trusted pop-up
I'm working on a network with one other developer that uses PHPStorm and intermittently throughout my usage of PHPStorm I get "Server's Certificate is not trusted" pop-up with an Accept/Reject button for stuff that doesn't concern me (but the other developer uses/owns).
Any way I can disable this behaviour from happening?
Please sign in to leave a comment.
As usual, my company's L1 support is useless.
The best solution for me may be to disable Netskop.
I uninstalled Netskope.
Did it help?
Yes! Sorry, I should have said that. No more Netskope, problem solved.
I have the same issue with a VMWare certificate.
I'm on Windows 10 with WebStorm Build #WS-231.8109.93, built on March 16, 2023, loading project inside /wsl.ubuntu/....
1) I have searched for "vmware" inside C:\Users\Angelos\AppData\Local\JetBrains\WebStorm2023.1 found 2 files:
1.1) C:\Users\Angelos\AppData\Local\JetBrains\WebStorm2023.1\httpFileSystem\catalog.json
with this entry
{
"name": "Application Accelerator",
"description": "Application Accelerator for VMware Tanzu",
"fileMatch": ["accelerator.yaml"],
"url": "https://json.schemastore.org/accelerator.json"
},
1.2) C:\Users\Angelos\AppData\Local\JetBrains\WebStorm2023.1\log\idea.log with many entries, mostly in paths - see all logs below.
2) I searched inside ./.idea and whole local project, no "vmware" entries found
3) Data:
The message I'm getting is:
Contents of C:\Users\Angelos\AppData\Local\JetBrains\WebStorm2023.1\log\idea.log are
Angelos, unfortunately, at the moment, there's no way to deduce which subsystem made the request or what URL was used; we have a usability issue about this: IDEA-219303
What you can do is back up the
.ideafolder and remove it while the project is closed. While it will reset all your project settings, you should stop getting these warnings since it's only one project you get it in.Another option would be to enable Settings | Tools | Server Certificates | Accept non-trusted certificates automatically.
Hey guys, last night when I work with pycharm suddenly I get pop-up notification about server certificate, And I mistakenly confirmed it, but I deactivated it very soon, the fact is that I have never even seen this domain and I have not worked with it, my question is, did I hit the trust button for a while, this server was able to enter my information and download them or look at my codes and information?
No, don't worry. It only means that the IDE could make an HTTP request to this server - unless there's a malicious piece of code on the IDE side (which is extremely unlikely), you are safe.
I have this with a different domain than mentioned so far, *.parkingcrew.net. I imagine this must be associated with a plugin, is there a way to determine which one?
Hello,
The issue is hardy caused by a plugin. When exactly does this window appear - on IDE startup or when trying to upload files to the remote server configured in Settings | Build, Execution, Deployment | Deployment?
Thank you. The window appears whenever I open a project, usually three times. I don't use the deployment feature. It seems to happen for all my projects.
Dylan Kuhn
Please add the following in Help | Diagnostic Tools | Debug Log Settings, reproduce the problem, collect the logs using Help | Collect Logs and Diagnostic Data:
Contact support at https://intellij-support.jetbrains.com/hc/requests/new with the logs or upload them via https://uploads.jetbrains.com and provide the ID here.
Upload id: 2024_07_24_29DaJzLury3P9xZjJRevL3 (file: phpstorm-logs-20240724-08113913841925111188070853.zip)
It's not clear from the logs what resource or plugin triggers this issue. This specific domain is used for expired domains that are parked and can be purchased. Something in your project or in some plug-in refers to the obsolete resource domain that no longer works and redirects to parkingcrew.net. If it's project-specific, please share a sample project via https://uploads.jetbrains.com so that we can investigate it further.
Unfortunately it is not project specific, it happens when I open any project.
If you are using Maven, check
.m2/settings.xml(in the user's home directory) for possibly obsolete / non-working repository mirrors.Disable non-bundled plug-ins and see if it helps.
I don't use Maven and have no `.m2/settings.xml`. I disabled all the plugins in the `Downloaded` section and still experience the issue on restart.
Maybe I spoke too soon, I am now able to open a project without the issue. I'll report back if I can identify a plugin causing it.
Please share your IDE Configuration directory: https://www.jetbrains.com/help/idea/directories-used-by-the-ide-to-store-settings-caches-plugins-and-logs.html#config-directory zipped via https://uploads.jetbrains.com (exclude
pluginssubdirectory to save space).Upload id: 2024_07_24_Xq3SMwqZLBkR3ofh9qJ9ws (file: PhpStorm2024.1.tar.gz)
If the issue doesn't occur with the third-party plug-ins disabled, it's definitely one of the plug-ins. Bisect them to find which one is causing the issue.
Odd - with the third-party plugins disabled the issue does not appear when switching projects anymore, but it does still appear on first start (or restart).
You can try using https://www.wireshark.org/ and match the HTTP/DNS requests timestamps with the dialog that appears. Maybe the full request URL, request data or domain that leads to the parkingcrew.net would help to trace it. There is probably some HTTP redirect that can be traced by code (301, 302, etc). May be more tricky if it's HTTPS. In this case you can try some capturing/decrypting proxy like https://www.charlesproxy.com/ .
I did a quick search through your settings archive for
http://andhttps://URLs and didn't find anything suspicious.Got same problem but the validity period so weird
Luudokhoa T65 Your problem is different, it's likely some corporate proxy or security tool that does it. Contact your network administrator for assistance.
Serge Baranov Can you explain detail for me, please? The common name seems like localhost and I found out maybe the certificate came from my wifi modem (because ZTE manufacturing the telecommunication equipment, my wifi modem might came from that corporation, I even don't live in China). My question is: how does a wifi modem relate to an IDE certificate? And do you think this is an attack? Sorry for bothering you, I don't have enough knowledge about cyber security or any kind of it and I don't really belive in the current network provider. Thank you for the answer!
Luudokhoa T65 There is some proxy in between you and JetBrains servers that intercepts all your traffic and replaces the original server certificates with its own self-signed untrusted certificates to decrypt the SSL traffic. Please google for more details. This has nothing to do with JetBrains products. In the IDE settings, make sure you don't have any proxy specified: https://www.jetbrains.com/help/idea/settings-http-proxy.html . If it still occurs with the No Proxy option, it means the proxy is transparent and is not configurable via the IDE settings in your case. You need to find why your traffic goes through this proxy and why it's replacing the server certificates.