"Cannot verify server identity" iPhone 4S on home wifi. I get this message on mail, safari, iCloud...

Change date and time setting to area you are in and auto adjust time

I know it sounds unlikely. But it may actualy be the router. I would power cycle the router by unplugging it for 10-20 seconds. Maybe even factory reset the router.

I am having the same issue! Did you find a solution?

I just recently had this issue. I solved it by going to date and time settings and turning off the set automatically setting for a couple seconds and the I turned it back on and then off again and I left it off. I'm not sure if this will solve your issue but it did solve mine.

Good Luck!

Hi Guys, I know it's late but for guys that are experiencing this now, it's due to changing date and time. You need to change it back!

Hah, this is so weird problem. I was wondering why my favorite sales guy had suddenly switched to his old Android phone, still using iPad though. He said: "One day I spent 2-3 minutes cancelling 'cannot verify server identity' messages that were mostly from webdav.facebook.com but I don't even have that app, it doesn't work in China, maybe I tried it in Hong Kong, but the app is not in my iPhone. My boss took a look and said not to use the iPhone in working hours, put the SIM in your old phone, becides playing with Facebook is not allowed in China". Now I'm waiting for what's the result of trying the Date&Time trick, seems to work after half a day.

I'm in China too and been having exact same problem since the beginning of 2015.

I uninstalled Facebook but it didn't make any difference.

I just tried changing the Date/ Time and hoping that sorts it.

You're not alone. I've had so many of these in the ast ten days that I've begun to snapshot the screen just for the sake of collection. I've got a ton of certificate trust request complaints by webdav.facebook.com nobody else. Wish I know what I did to start this avalanche. So far I'be been refusing to trust anything that relies on ME to say it's okay...What the heck do I know about it??

Here are some of the more recent requests, all of which I have denied.

8.stgi.net

host.acorle.net

www.liveen.co.kr

localhost <<<--- Ain't that interesting?

ssl2573.cloudflare.com

*.frontrowed.com

vietbao.vn

and a cast of thousands, it seems

Some of these are self-issued, I especially like that "localhost" entry. It's set to expire in 2042. Not on my machines.

Where is all this coming from and did I start it? How can I eliminate all this? Is there an iPad setting to globally block what is requested but not already allowed in the certificate store on board right now?

Fascinating.

Ken Jones, Shanghai

Changing Date and Time wont work according to my friend, it's kind of a trojan. They had tried Restore from the problem phone's backup to another iPhone, now it has the trojan too. Now there are 17 phones with the same problem, so it seems to spread somehow.

Now I got it too. "Cannot ferify..." "webdav.facebook.com". First showed up on my iPhone then 5h later on iPad. To use the iPhone I need to hit cancel up to 10 times.

I am having the exact same error and I have tried changing the time and date. That did not work for my iphone 6+. I also removed the Facebook app and still have error. Please help. It is getting really frustrating.

I am having the same problem: I am getting several times a day on my iPad (3rd generation) and my iPhone 4S the messages:

Cannot Verify Server Identity

The identity of "webdav.facebook.com" cannot be verified by Facebook.

Review the certificate details to continue.

Every time, I choose cancel.

I don't know, what triggers this message (I am not actively using Facebook or any app that would try to access Facebook at the time when this failure messages happen.

I am using the newest iOS version (8.1.3).

I am living in China.

I don't get the error messages when I am connected via a VPN.

So far that I remember - the problems started somewhere at the beginning of 2015.

The 'Not Trusted' Certificates are usually never the same. I did had - among others -:

• *.littletonpublicschools.net.
• lds140.securednshost.com
• auvisa.com
• langel.jp
• www.colesfinancialservices.com.au
• *wpengine.com and even
• localhost

What can be done? It's really annoying.

If this Behaviour is geographically based, I'd suggest the bad guys in China are trying to pollute my certificate store with these bogus certificates. Wish I knew more about this subject. Also wish I knew how to clean / restore the certificate store to a known good state. At this point, it's all a puzzle to me, but I find it disturbing.

Ken , Shanghai.

KenTenTen wrote:

If this Behaviour is geographically based, I'd suggest the bad guys in China are trying to pollute my certificate store with these bogus certificates. Wish I knew more about this subject. Also wish I knew how to clean / restore the certificate store to a known good state. At this point, it's all a puzzle to me, but I find it disturbing.

Ken , Shanghai.

It's quite possible that the news has not reached people IN China, but since early January the government of the PRC has been blocking more and more external sites, including a number of popular VPNs, but especially FaceBook and Twitter. This is most likely the problem if you are in the PRC.

Oh, we're "Old Hands" dealing with blocked websites in this country. Usually takes the form of a poisoned DNS that sends you to a dead location, then you just time-out after a while, and think your connection is crappy...which it might very well be if you're going out of the country--it's actually quite snappy inside the People's Republic.

It's a game of Cat and Mouse, to be certain, and the cat's getting smarter.

Open VPN, the most widely used protocol, has a packet signature of some kind, they tell me, that discloses itself to those who would care to investigate. While it remains (we think, and hope) impractical to decrypt OpenVPN packets, it is possible to look for them and block their being forwarded. I've read that it's possible to corrupt a packet on purpose, causing the connection to fail repeatedly. This technique is common on cleartext connections to un-harmoniouis websites. Google searches do work in China, but they're so slow as to be nearly unusable. Bing, OTOH pops right back to you (with harmonized content,)

This is a different approach, it seems. Seeing the proliferation of HTTPS connections to everywhere, and realizing the difficulty in decrypting transmissions Just To See If Anything Un-harmonious might be traversing the net (perish the thought) it looks like the effort now is to install fake certificates to compromise the user's device, enabling collection and forwarding of data Prior to being encapsulated in a VPN packet, or MITM inspected on the way out to what we Only Thought was a secure connection.

A few months ago there was a widely reported attempt to install a certificate from "hotmai.com" Not h-o-t-m-a-i-l, h-o-t-m-a-i Perhaps that was the Proof of Concept exercise.

If I had any secrets to hide, I'd be livid about all this. As it is, I find it amusing.

Still, I like Threema on iOS and Telegram.everywhere.