[ithkuil]

I see an untrusted cert: "Issued by: allot.com/emailAddress=info@allot.com". Am I the only one?

EDIT: https://www.allot.com/service-providers/url-traffic-filterin...; still not sure if it's on my side, or if the CDN (netlify in this case) is applying this to some regions (I'm in EU)

[tyingq]

"allot.com" appears to be one of those "MITM Corporate/Parental Nanny Software" companies. You're either being MITMed by your company or your parents :)

[ithkuil]

Why just this site?

[justinsaccount]

Probably because it's COCKroachlabs.com

See also: https://en.wikipedia.org/wiki/Scunthorpe_problem

[cpach]

As I alluded to in another comment, some of these systems require every single domain to be categorised, e.g. banking, news sites, game sites, political sites. (The purpose of that is so that the admins can filter out e.g. gambling and porn sites.)

So if cockroachlabs.com is not categorised, that could be one possible reason that it doesn’t load properly.

I don’t know if Allot does this, but I know for a fact that Fortinet has systems that works like that.

[tyingq]

That type of software is pretty highly configurable...like "NO MITM for Bank type sites", "only MITM for sites with domains < 1 year old", etc.

[tyingq]

Looks okay on ssllabs: https://www.ssllabs.com/ssltest/analyze.html?d=www.cockroach...

[corobo]

Sounds like something's intercepting your connection.

I would imagine, but don't necessarily recommend, if you allowed the connection anyway you'd get a blocked page from your firewall service

[cpach]

I don’t see that. If your on your work network, it could be your employer’s security system that is intercepting your connection.

A possible explanation could be that the domain cockroachlabs.com is not yet categorized in the security system.

[kkirsche]

Yes, I see a trusted let’s encrypt cert