Hi all, I bought 2 Comodo SSL (Postive & Essential) from gogetssl, they both got warning from Chrome. Create key from their key generator with SHA-2 checked. Install SSL cert and FIrefox showed no error. Then I checked with Chrome it had warning "site uses weak signature SHA-1 .... so your connection may not be private" Checked with shaaaaaaaaaaaaa.com - although at the top there is "Nice ... bla..bla.. has a verifiable certificate chain signed with SHA-2." but it also shows "SSL certificates are signed using a one-way hash — usually SHA-1. Which is too bad, because SHA-1 is becoming dangerously weak. It's time to upgrade to SHA-2." Also checked with SSL Server Test (Powered by Qualys SSL Labs) got B rating. it showed like this: Funnily, I even checked gogetssl site itself with shaaaaaaaaaaaaa.com (SHAAAAAAAAAAAAA | Check your site for weak SHA-1 certificates. and it said I already asked gogetssl to clarify this, they denied and prove with www.sslshopper.com/ssl-checker shows no error. But when I looked at the bottom at the page: So, does my SSL cert signed with SHA-1 or SHA-2 ? Any opinion what should I do ? Thanks.