Skip to content

[Bug]: Website is not blocked. False positive. #2858

New issue
New issue
Open
Open
[Bug]: Website is not blocked. False positive.#2858
Labels
bugSomething isn't working correctlytriageShould be triaged through the triage board
@inDane

Description

@inDane
inDane
opened on Sep 23, 2025

Contact Details

indane@indane.de

What happened?

The regular Websites test finds 1 blocked and 1 failed.

The problem for the failed one (secfirst.org) is a invalid/expired certificate:#

$ curl https://secfirst.org -I
curl: (60) SSL certificate problem: certificate has expired
More details here: https://curl.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

I would guess, for the "blocked" one it is a false interpreted redirect:
http://womenforwomen.org / https://womenforwomen.org ---> https://www.womenforwomen.org

$ curl http://womenforwomen.org -I
HTTP/1.1 301 Moved Permanently
Date: Tue, 23 Sep 2025 10:59:15 GMT
Content-Length: 0
Connection: keep-alive
Retry-After: 0
Server: cloudflare
Location: https://www.womenforwomen.org/
X-Pantheon-Redirect: primary-domain-policy-doc
X-Served-By: cache-fra-eddf8230089-FRA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1758625155.381905,VS0,VE4
Age: 0
Accept-Ranges: bytes
Via: 1.1 varnish
cf-cache-status: DYNAMIC
CF-RAY: 983988150c7af805-DUS


$ curl https://www.womenforwomen.org -I
HTTP/2 200 
date: Tue, 23 Sep 2025 10:54:10 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=900, public
content-language: en
cf-cache-status: DYNAMIC
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Sun, 21 Sep 2025 12:39:57 GMT
server: cloudflare
strict-transport-security: max-age=300
x-content-type-options: nosniff
x-drupal-cache: HIT
x-drupal-dynamic-cache: HIT
x-frame-options: SAMEORIGIN
x-generator: Drupal 9 (https://www.drupal.org)
x-pantheon-styx-hostname: styx-fe4-a-6df965d5c7-p5dr6
x-styx-req-id: f7560164-974d-11f0-8d35-aaa94179a3d6
x-ua-compatible: IE=edge
x-served-by: cache-chi-klot8100041-CHI, cache-fra-eddf8230126-FRA
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1758624850.102754,VS0,VE4
vary: Accept-Encoding, Cookie, Cookie, Cookie
age: 162
via: 1.1 varnish, 1.1 varnish
cf-ray: 983980a11dd98e0f-DUS

Best

Version

OONI Probe 5.2.1

What platform are you running?

Android

Platform Version

GrapheneOS (Android 16)

Device

Pixel 7a

Relevant log output



Code of Conduct


    

  •  I agree to follow this project's Code of Conduct
    • 

Metadata
Metadata
Assignees
No one assigned
    Labels
    bugSomething isn't working correctlytriageShould be triaged through the triage board
    Type
    No type
    Projects
    No projects
    Milestone
    No milestone
    Relationships
    None yet
    Development
    No branches or pull requests
    Issue actions