Untrusted Secure Certificate

Just so you know, my Chome installation (on Mac, if it makes any difference) does not trust your certificate signer, one Thawte Premium Server based in... Western Cape, South Africa?? A bit random...

Anyway, when I attempt to log in to the secure portal, it gives me this big red warning screen telling me to run the other way as fast as computationally possible. Might be a deterrent to people trying to buy, is all.

Here is a screen cap, for good measure.
EDIT: Versus GMail's Cert that is also issued by Thawte, but that one in turn is issued by VeriSign...

Also, for fun: Warning Screen intimidation: 1d20 + 10 ⇒ (5) + 10 = 15 Vs. Will Save or Knowledge (Computers)

I remember vic posting about this problem a little while back and he'll probably be on to clarify in a little bit but this thread has some information that may or may not apply to your specific problem.

I remember vic posting about this problem a little while back and he'll probably be on to clarify in a little bit but this thread has some information that may or may not apply to your specific problem.

Ah yes, that thread does pertain exactly to me. :P Rebooting didn't help (as I was forced to reboot moments ago...). I guess reinstalling a cert is next?

It just seems odd that this is happening at all if Thawte is so highly regarded (I personally haven't heard of them before). I suspect that difference between pazio's cert and gmail's cert (outlined above in those two images) may be causing this... :/

Lissa Guillet wrote:

I remember vic posting about this problem a little while back and he'll probably be on to clarify in a little bit but this thread has some information that may or may not apply to your specific problem.

Ah yes, that thread does pertain exactly to me. :P Rebooting didn't help (as I was forced to reboot moments ago...). I guess reinstalling a cert is next?

It just seems odd that this is happening at all if Thawte is so highly regarded (I personally haven't heard of them before).

The Thawte brand is pretty much used exclusively for certs like this, so even though they're the world's second largest provider of SSL certs, unless you're in that business, you wouldn't really have reason to hear that name. (Thawte was founded in 1995; VeriSign purchased them in 1999; Symantec bought *them* in 2010.)

I suspect that difference between pazio's cert and gmail's cert (outlined above in those two images) may be causing this... :/

The two certs you linked actually work at different levels; the cert called by paizo.com is a root cert, which operates at the most trusted level; the gmail cert you linked is an intermediate cert, which only works in conjunction with a root cert. (It's a bit more complicated than this, but basically, a root cert is automatically trustworthy, while an intermediate cert uses a chain of trust that says "this cert is trusted by a root cert, and so it must therefore also be trustworthy.")

The thing is, unless a root cert expires (which this hasn't) or has been revoked (which this hasn't), you just plain shouldn't see this error. I will note that we've received exactly five complaints with this, including yours, and every single one of them was a Mac OS user; you're the first person to report this since Apple released Security Update 2011-006 for OS X 10.6.8 and 10.7.x, which, among other things, included "updated root certificates." Are you by any chance running an OS X version without that patch?

The first thing I'd do is update your OS to that patch level; if you can't do that (or already have), then go ahead and reinstall the root cert using the info from the thread Lissa linked above.