Showing questions tagged: Show all questions
  • Solved
  • Archived

Miss track the intermediate certificate

I'm using firefox for windows 7. My firefox now has version 41.0.1. This problem, however, was happened in older versions too. When I visit https://www.google.com/, then … (read more)

I'm using firefox for windows 7. My firefox now has version 41.0.1. This problem, however, was happened in older versions too.

When I visit https://www.google.com/, then drop down the menu [Tools]-->[Page Info]-->click the [Security] icon-->click the [View Certificate] button. In the Cerftificate Viewer dialog, click the [Details] tab and it will show the Certificate Hierarchy tree. The tree shows like below:

 GeoTrust Global CA <- Google Internet Authority G2 <- google.com

But when I use "openssl.exe s_client" command to test www.google.com:https, it shows below hierarchy:

 Equifax Secure Certificate Authority <- GeoTrust Global CA <- Google Internet Authority G2 <- www.google.com

Does it mean that the certificate "GeoTrust Global CA" is still a intermediate certificate which is issued by Equifax but firefox think it is a root CA ?

I checked the public key of the certificates "GeoTrust Global CA" retrieved from both firefox and openssl, and they are the same as below:


BEGIN PUBLIC KEY-----

MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2swYYzD99BcjGlZ+W988 bDjkcbd4kdS8odhM+KhDtgPpTSEHCIjaWC9mOSm9BXiLnTjoBbdqfnGk5sRgprDv gOSJKA+eJdbtg/OtppHHmMlCGDUUna2YRpIuT8rxh0PBFpVXLVDviS2Aelet8u5f a9IAjbkU+BQVNdnARqN7csiRv8lVK83Qlz6cJmTM386DGXHKTubU1XupGc1V3sjs 0l44U+VcT4wt/lAjNvxm5suOpDkZALeVAjmRCw7+OC7RHQWa9k0+bw8HHa8sHo9g OeL6NlMTOdReJivbPagUvTLrGAMoUgRx5aszPeE4uwc2hGKceeoWMPRfwCvocWvk +QIDAQAB


END PUBLIC KEY-----

Maybe this is a bug that firefox will miss the intermediate certificate when it encounter the circumstances like above.

Asked by Coconut888 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

Firefox Untrusted connection

I have tried every way possible to fix this error none of the website work the only one that does is yahoo and they all say the same error If you usually connect to this … (read more)

I have tried every way possible to fix this error none of the website work the only one that does is yahoo and they all say the same error

If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.

This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely. As a result, it is not possible to add an exception for this certificate.

www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer)

Asked by Cosmiczilladog 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

I think I deleted a certificate and I can't restore it

I don’t know whether this is a problem with Microsoft office, firefox or my machine, I have already contacted apple support, and they said that it was not my machine. Whe… (read more)

I don’t know whether this is a problem with Microsoft office, firefox or my machine, I have already contacted apple support, and they said that it was not my machine. When I contacted Microsoft support, after describing the problem they ended the chat without saying anything. So this is what happened: I was at school. I tried to access my outlook email in firefox. I got an untrusted connection page. On the school wifi, since it restricts certain websites, you have to have a certificate installed in order to access secure (ones with lock icon) websites, I think so that the restrictor thing can see what webpage you are accessing. If it can’t read what you are accessing, it doesn’t let you access the page and you either get an access denied page, or on firefox a “this connection is untrusted” page. Earlier in the year I installed the certificate. for Firefox, I could click on a link that they gave us and it installed itself. for Chrome, I downloaded the certificate and imported it into my keychain. So when I got the connection untrusted page on firefox when trying to access a site that isn’t blocked, my school email, which is outlook/office365, since I had heard rumors about an updated version of the certificate, and having to install the new one, I decided to try reinstalling the certificate in firefox. So I used the wifi hotspot on my phone to go to my school email, the page that I couldn’t access before, I went to the school Sharepoint site for tech stuff, and clicked on the link to download the certificate. It said it was already installed. But it didn’t look like it was working on the school wifi, because I still couldn’t use the wifi to access outlook. So I tried to uninstall the certificate. since it said it was a certificate authority, I went into firefox advanced settings > certificates > certificate authorities and deleted the certificate called Bloxx. I might have forgotten a test here that I tried, but not anything else that I deleted. I found that it still wasn’t working. now I couldn’t access outlook at all. I tried uninstalling and reinstalling firefox. But the certificate I had deleted wasn’t there. I looked in my keychain, and I saw that there was no certificate called Bloxx in my system roots, but the other certificates I had seen in the firefox settings were there. When I got home, using time machine I backed up my computer so that anything I did from there on could be recovered. I hadn’t had any system backups before that. I saw on apple forums that I should try to reinstall the OS. I reinstalled OS X El Capitan. I can see the certificate I deleted is now there in firefox, but I am on the wifi at home which is not restricted at all, and I cannot access the office365, outlook, or any websites relating to that, even the products.office.com site. It says the connection is untrusted. However, on chrome, everything works.

Asked by crowstars 4 years ago

Answered by crowstars 4 years ago

  • Solved
  • Archived

sha-1

i have a website http://gefest.rads-doi.org/index.php/login and cant enter in, got an error "Этот сайт использует сертификат SHA-1; рекомендуется использовать сертификаты… (read more)

i have a website http://gefest.rads-doi.org/index.php/login and cant enter in, got an error "Этот сайт использует сертификат SHA-1; рекомендуется использовать сертификаты с алгоритмами подписи, использующими более сильные хеш-функции, чем SHA-1.[Подробнее] mc.yandex.ru", and all other script stops work. But in firefox on linux it works correctly, what is the problem. And also oncontextmenu doent works as it has to. On many browsers it works normally, and on firefox it doesn,t how can i fix it?

Asked by Asylzat 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

Since upgrade to 43.0.3 no certifcates work unless I back date system to 12/2015

Since the beginning of the year none of the sites I visit that require a certificate work. If I back date my system to say 12/23/2015 they work fine. I don't seem to ha… (read more)

Since the beginning of the year none of the sites I visit that require a certificate work. If I back date my system to say 12/23/2015 they work fine. I don't seem to have this issue with Internet Explorer. I'm not sure if this is a date issue or and issue with version 43.0.3 which I installed on 1/2/ 2016. Help!

Asked by SchuylerFarms 4 years ago

Answered by SchuylerFarms 4 years ago

  • Solved
  • Archived

Why can't I log into my Macys.com account from Firefox? I can do it through Microsoft Edge (but would rather not)

I get an error from Firefox when trying to log into my Macys.com account. It says I don't have permissions to log on. However I have no problems logging in through Micr… (read more)

I get an error from Firefox when trying to log into my Macys.com account. It says I don't have permissions to log on. However I have no problems logging in through Microsoft Edge. I'd rather not use Edge, but if Firefox is going to be difficult and deny access I guess I'll have to.

Asked by scolarco 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

Issuer Certificate is Unknown. Previously had to create a new profile. Deleting Cert8 file no help. Can Access site on different User Account.

Can not access a secure site that I previously could. I can access this site on the other user account. Tried to delete Cert8 file, but that didn't help. "Advanced" sh… (read more)

Can not access a secure site that I previously could. I can access this site on the other user account. Tried to delete Cert8 file, but that didn't help.

"Advanced" shows... The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.

64 bit Windows 7, Microsoft Security Essentials. One Admin Account & 2 Users. Problem User Account had problems a couple of weeks ago. I believe I tried to Delete the Profile and Create a new one, but I can't recall the details other than some information was left that I didn't expect.

Asked by helpmeplease 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

I keep getting "unresponsive script" error reports and I've tried many options including refeshing firefox. any ideas?

I have an HP Pavillon, Juno email and Firefox is my default browser, At some point while accessing my email I will get the "unresponsive script" error and although it gi… (read more)

I have an HP Pavillon, Juno email and Firefox is my default browser, At some point while accessing my email I will get the "unresponsive script" error and although it gives my options to continue, debug or close, none of it works and computer freezes. So I have to go to Task Manager and close everything down and start over. Very frustrating. It has also happened when I have been on other websites or with Internet Explorer. HP has tried fixing it, Juno has tried ....all to no avail. I've tried refresh, done many virus/malware scans, etc. It seems to me there is a plug-in or an add-in or some box somewhere not checked. Any ideas?

Asked by JolietJim 4 years ago

Answered by JolietJim 3 years ago

  • Solved
  • Archived

Add ons page in Firefox displayed in poor graphics - issues with plugins?...

Hello, for the past 2 days my Firefox on my laptop has been acting weird when it has suddenly refreshed itself. When I go to the Add-ons page, the graphics looks very poo… (read more)

Hello, for the past 2 days my Firefox on my laptop has been acting weird when it has suddenly refreshed itself. When I go to the Add-ons page, the graphics looks very poor (see attached image) and so does Youtube. I went to see if any plugins were having issues and saw that the Java toolkit is at some vulnerable state and cannot be accessed (Firefox simply won't let me to that Java page as it is untrusted). I was trying to re-install the Session manager add on, but the entire graphics of that Add-ons' page looks disabled. My Firefox is up to date, according to the to Firefox itself. Please advise me what to do, as I would very much like to get my old (proper working) Firefox back, and which would be the best way to uninstall it, as clearly that didn't work either?

Thank you all in advance.

Asked by Micodude 3 years ago

Answered by philipp 3 years ago

  • Solved
  • Archived

MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE & unsecure message

Hi, I'm not able to access https://pixabay.com/ as I get the message above (question bar) showing. Having checked out Q&A I tried deleting the cert8.db file then re-… (read more)

Hi,

I'm not able to access https://pixabay.com/ as I get the message above (question bar) showing. Having checked out Q&A I tried deleting the cert8.db file then re-starting Mozilla, no joy. I am a bit reluctant to do a refresh as I'm unsure how it would affect my system? I am not that computer literate! I did do an SSL check & both their server & info bar url came back as A+.

Around the same time I now also can't access https://personofinterestdiscussion.com/ I did an SSL check & that came up with vulnerabiities. (I made a note of some if needed.) Their overall safety rating is F - grade capped to C . I haven't made any changes to my laptop lately (Windows 7) & haven't had problems accessing either site until a couple of days ago & I just don't know what to do to get back onto both. I have anti virus, anti spyware, anti malware etc installed with no problems, also Mozilla's website protection. I scan my laptop daily. This has came on so suddenly & I really want to get back onto both sites, so any help would be very much appreciated. Thanks!  :)

Asked by teammachine 3 years ago

Answered by teammachine 3 years ago

  • Solved
  • Archived

How can I select a client certificate from a smartcard?

Hi, I have a spr532 card reader with a test smartcard with Firefox 50.1.0 on Ubuntu 16.04 up to date. I want to use the client certificate from the device to log in on a … (read more)

Hi,

I have a spr532 card reader with a test smartcard with Firefox 50.1.0 on Ubuntu 16.04 up to date. I want to use the client certificate from the device to log in on a website that I am developing.

I also have a test certificate that I generated and it is not on the card. I can log in with the test certificate that I have but not with the one on the card. The problem is that in the "User identification request" page I cannot see the certificate from the smartcard. I can see my generated certificate but not the one on the smartcard. Firefox asks me for the pins for the smartcard (I have two certs on the card and they both have PINs). Firefox sees my certs from the smartcard in about:preferences#advanced > View Certificates > Your Certificates column. I have both the certs on the smartcard and the one I generated in that table. But when I try to log in, Firefox only shows me my generated cert and not the one from the smartcard.

What can I do? How can I debug this? This is a dev environment. I can change any configs on the server so I can decrypt the TLS session and see what is going on between my server and the browser.

PS: I tried to send this message with 2 other email accounts but I do not get the confirmation email.

Thank you!

Asked by andreiconnectis 3 years ago

Answered by andreiconnectis 3 years ago

  • Solved
  • Archived

I need help accessing https://utcommunications.teamworkpm.net/ after a certificate warning. Now it is blocked.

This is the site my office uses to communicate about projects and log time. I could access it until earlier today when I set up a new computer and must have clicked somet… (read more)

This is the site my office uses to communicate about projects and log time. I could access it until earlier today when I set up a new computer and must have clicked something wrong in the certificate warning. It opens in Chrome, but Firefox is my default.

Asked by angievicars 3 years ago

Answered by angievicars 3 years ago

  • Solved
  • Archived

Problem with register certificates on Firefox version 54

I created a program which adds a certificate to Firefox to communicate with a websocket at localhost. To use it with https, I had to add a certificate to certificate stor… (read more)

I created a program which adds a certificate to Firefox to communicate with a websocket at localhost. To use it with https, I had to add a certificate to certificate stores, including the one Firefox uses. To Firefox, the command used:

certutil.exe -d [cert8.db path] -A -t "TCu,Cuw,Tuw" -n [name] -i [crt path]

Friday I noticed that it stopped working. I add, no issue reported. I use -L, the certificate is there. I even looked at Tools > Options > Advanced > Certificates, and it is there. But Firefox keep saying it's not trustable. Already closed and opened the browser.

I saw there was a update 13th June. Does it changed something about certificates part?

Asked by darakeon 2 years ago

Answered by darakeon 2 years ago

  • Solved
  • Archived

SEC_ERROR_BAD_SIGNATURE on private CA certificates

Was there a recent change that invalidates private certificates, with it's private CA imported into my FF CA repository? What I have set up, which worked not too long ago… (read more)

Was there a recent change that invalidates private certificates, with it's private CA imported into my FF CA repository?

What I have set up, which worked not too long ago, which was defining the IP address and host name in C:\Windows\System32\drivers\etc\hosts file. Then importing the remote site's private CA certificate in FF. From that point on, it trusted my private URLs due to matching private CA. Now, generates SEC_ERROR_BAD_SIGNATURE.

I renamed the cert8.db file and restarted FF. I now get the normal "untrusted" error then re-imported the private CA to make the "untrusted" error go away. However, that still gave me SEC_ERROR_BAD_SIGNATURE. So, something must've changed.

I even tried disabling OCSP checking (thought it was optional if it couldn't check). I then disabled OCSP Stapling. Neither resolved this issue, thinking it was trying to check with the OCSP server, which it can't reach due to firewall since it's internal to the other private LAN.

I'm not sure where to look. I tried Googling for answers, which lead me to the above two solutions to try.

The CA I have is a private CA, generated by Microsoft Windows Server 2008 R2 with the Active Directory Certificate Authority installation. Like I said, it was working in FF fairly recently. Let me know what else you need for me to provide.

Regards,

John Babbitt Systems Administrator Cutler Investment Group, LLC

Asked by CIG_Support 2 years ago

Answered by CIG_Support 2 years ago

  • Solved
  • Archived

reused_issuer

This message keeps appearing when I attempt to access a new site: SEC_ERROR_REUSED_ISSUER_AND_SERIAL The page for security certificates that is linked to from the error p… (read more)

This message keeps appearing when I attempt to access a new site: SEC_ERROR_REUSED_ISSUER_AND_SERIAL

The page for security certificates that is linked to from the error page lists several errors but does not include this one. There is nothing showing up when I search your support pages. Please can you supply the information required to sort this problem out.

I have Kaspersky Total Security.

Thank you

Jon Freeman

Asked by freejon 2 years ago

Answered by freejon 2 years ago

  • Solved
  • Archived

Your connection is not secure - SEC_ERROR_UNKNOWN_ISSUER

Yeah, one of these topics again. Seeing how often this gets posted making a new thread was a last resort, but I'm at my wits end here. Two days ago Firefox (actually Wat… (read more)

Yeah, one of these topics again.

Seeing how often this gets posted making a new thread was a last resort, but I'm at my wits end here. Two days ago Firefox (actually Waterfox, but after testing Fire I seem to have the problem on both browsers) started returning a "Your connection is not secure" error on what seems to be every single https URL and I can't even add exceptions. This happened once before two weeks ago, but it fixed itself after a few hours. No idea what caused it or what fixed it. It does not affect other browsers, but strangely it does affect the Blizzard Battle.net app and does not allow it to connect to the internet (so I can't play anything).

I've spent the last two days digging through support threads trying every solution I could find. I'm not using Kaspersky (turned off all protection features in AVG and Windows just to be sure, didn't work and have since turned them back on), I've tried importing certificates from other browsers, I've reset my network settings, I've tried disabling all of my addons, I've tried changing Firefox proxy settings, I've tried a new Firefox profile, I've run system scans and registry fixes, I've tried safe mode, I've deleted Firefox's cert file, I've reset my system countless times, I've reset my router, I've even confirmed my date/time settings were correct. Nothing has worked so far. Is there anything I haven't tried?


https://www.google.com/

Peer’s Certificate issuer is not recognized.

HTTP Strict Transport Security: false HTTP Public Key Pinning: true

Certificate chain:


BEGIN CERTIFICATE-----

MIIC4zCCAcugAwIBAgIRAKm8ETiNySk9HA4+VJnjuUMwDQYJKoZIhvcNAQELBQAw KjELMAkGA1UEBhMCRU4xGzAZBgNVBAMMEjE5MGM4MmMxOWFiNDZhNDAgMjAeFw0x NzA4MTUxNjA0MDBaFw0xNzExMDcxNjA0MDBaMGgxCzAJBgNVBAYTAlVTMRMwEQYD VQQIDApDYWxpZm9ybmlhMRYwFAYDVQQHDA1Nb3VudGFpbiBWaWV3MRMwEQYDVQQK DApHb29nbGUgSW5jMRcwFQYDVQQDDA53d3cuZ29vZ2xlLmNvbTCBnzANBgkqhkiG 9w0BAQEFAAOBjQAwgYkCgYEAwWhyT4acv2vC2P8a57MRH0LyAD1zltYPzHFQtvK6 xwxwO61aLb8itMXQQSx8aW4nH3F1ab0UquNrgyDD4IZtR9U2Vm4CoCVUuhzZRvqI Rzb3UrCVasYgCirBnK4NevDKe2rfT4XUL6eFmy8L6Oklx9qjL/5n4qTnCWtW10Wj Og0CAwEAAaNKMEgwGQYDVR0RBBIwEIIOd3d3Lmdvb2dsZS5jb20wDAYDVR0TAQH/ BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDQYJKoZIhvcNAQEL BQADggEBAKGs/qQ5Pbb0+BL7nPF+EMFGH/6qVteQ8DcMaXJ1c7RKqdNxnel7F3oP T+bz9ma0Pf7yCrhjhVRZWJytazsbSHDVizltwdMA7+HzmNv5z113khJW7RdPKFAj 2t9RWV5PhXBGTTn5PvroVp888lPMtRtvMJS5udle3cjcFWlKsBSAoEKTH4eCra1o hbS6kmVYbWBFXaXa7RaGzLale6N/4qI/CUoJoRJAXKnoMMGhA2JwkRBrt+pI+wVq n2GYfbOA72k2N4LG/fdndZTwugSfUYbKnLnx9BDbe4twG3njNrl26acNZ4ikVEuj YGdt9h6q+ZLUfhwXk6e7YsAEtkXr4So=


END CERTIFICATE-----


https://www.mozilla.org/

Peer’s Certificate issuer is not recognized.

HTTP Strict Transport Security: false HTTP Public Key Pinning: false

Certificate chain:


BEGIN CERTIFICATE-----

MIIDjTCCAnWgAwIBAgIRAMqhxAyYotgVaDQJGzzOpBUwDQYJKoZIhvcNAQELBQAw KjELMAkGA1UEBhMCRU4xGzAZBgNVBAMMEjE5MGM4MmMxOWFiNDZhNDAgMjAeFw0x NjExMDkwMDAwMDBaFw0xODExMTQxMjAwMDBaMIIBAjEdMBsGA1UEDwwUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCVVMxGzAZBgsrBgEEAYI3 PAIBAhMKQ2FsaWZvcm5pYTERMA8GA1UEBRMIQzI3NTkyMDgxHjAcBgNVBAkTFTY1 MCBDYXN0cm8gU3QgU3RlIDMwMDEOMAwGA1UEERMFOTQwNDExCzAJBgNVBAYTAlVT MRMwEQYDVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1Nb3VudGFpbiBWaWV3MRww GgYDVQQKExNNb3ppbGxhIENvcnBvcmF0aW9uMRQwEgYDVQQDEwttb3ppbGxhLm9y ZzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1+ZJvmO2xcMjNDoz/BT5jOuc 53HsRHhw1kNlE3MzHWvCQTKjaBW0uvm5P8ge6NnU1YdEvNXLZRLnVTClz5ZxdNMA /G9CTw2Y665My/BLVqrUWVhWg0oC4txGIGWFM36OdSnFOsTZ2GWkdoG3RKT/qRO8 EukAHjRWF/j5ZZgn8YUCAwEAAaNYMFYwJwYDVR0RBCAwHoILbW96aWxsYS5vcmeC D3d3dy5tb3ppbGxhLm9yZzAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjANBgkqhkiG9w0BAQsFAAOCAQEAyu7s3kwFqIHFWTTN9sVv c1RHaKCCi000M9n8fxuAg8s3QumPEpuW28vT0Qa1/yIG2zKhGlM5pQeqSuFoaT0d vUXm6ypXXvLpLe7vDEfmrgyzo+nH4sNk+rdp2sujOCwLwgPYUI+BtQA3ldeH7FR9 XzTnVJaveWzZ5N9OqFYkfvL0Kbl34HH6F6esMD22zXrfEtP/aKYnLDhIkcN3d1Wz vbl6RPlC2ObM/dOiiVXYdmjUIGTJbQt2486klYHXse4mpDFlj8UVafFOJwfMEBNm QPWzJZwR2UrGTKRKgM1G+m3gV4dN9GSBAwTXfatey/xI+LzyZo7luPuyLe2J07LO bw==


END CERTIFICATE-----


https://tweetdeck.twitter.com/

Peer’s Certificate issuer is not recognized.

HTTP Strict Transport Security: true HTTP Public Key Pinning: true

Certificate chain:


BEGIN CERTIFICATE-----

MIIDpTCCAo2gAwIBAgIRAJ3Y95mfyPRGAhjp4VURxgkwDQYJKoZIhvcNAQELBQAw KjELMAkGA1UEBhMCRU4xGzAZBgNVBAMMEjE5MGM4MmMxOWFiNDZhNDAgMjAeFw0x NTA1MjAwMDAwMDBaFw0xODA1MjQxMjAwMDBaMIGFMQswCQYDVQQGEwJVUzELMAkG A1UECBMCQ0ExFjAUBgNVBAcTDVNhbiBGcmFuY2lzY28xFjAUBgNVBAoTDVR3aXR0 ZXIsIEluYy4xGTAXBgNVBAsTEFR3aXR0ZXIgU2VjdXJpdHkxHjAcBgNVBAMTFXR3 ZWV0ZGVjay50d2l0dGVyLmNvbTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA yviGfBEk5QwMrKWRjeT4/bkUg+nwRXj2WhyIMEujDnVLTLG8raY9gyygyvFcpo9z i6t6+BncW+2bIhQde5PMnSLkFyk3qdOLlX5ZZVxsZCB10XndYGbCkOAyLw2/13I+ jOEB6YFxhnrUGx2RhvgrmMCzuTk7FvbRzAiJrmf12GMCAwEAAaOB7TCB6jCBugYD VR0RBIGyMIGvghV0d2VldGRlY2sudHdpdHRlci5jb22CDXR3ZWV0ZGVjay5jb22C EXd3dy50d2VldGRlY2suY29tghF3ZWIudHdlZXRkZWNrLmNvbYIRYXBpLnR3ZWV0 ZGVjay5jb22CF2Rvd25sb2Fkcy50d2VldGRlY2suY29tghF0ZGFwaS50d2l0dGVy LmNvbYIOdGQudHdpdHRlci5jb22CEmJsb2cudHdlZXRkZWNrLmNvbTAMBgNVHRMB Af8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjANBgkqhkiG9w0B AQsFAAOCAQEAJBZPSGGy1MVwJAQmYkX/nCkkbhHMxNI0c9Hf20PnPaHErEPQwbVJ obdeGaT06BfXKBqyIwn0wgGWPlyQkc6JI4Tilb/Sw1k74W3gl8ips6yCbaoouVFC T9XwL1cB25TedHzqCMBzr7JpLaT3HxFmE8SNJpel8/HuZwDygl3bmcxvkcTophiE qgDBcTAlvukgQOWlF5ihBs3sdw6j9gjDc/MaediuNr2MZQk5ZmwTMS50S8F4giGd aJr9sUF5z6hOh1BaqKFGvBgsGr8u8iX7xNkCqGZR/PQikAgbnYre8gtg+ek8JcPW WGRXkpIv/9Vd6POiSW/l9fX9v/HNP63b/A==


END CERTIFICATE-----

Asked by Silverware 2 years ago

Answered by Silverware 2 years ago

  • Solved
  • Archived

Firefox believes that a certificate from one site belongs to another site

Hi, I own the following website: http://antarkia.training It is a private site of my business where we use an e-Learning platform named Moodle. For years, I've used Firef… (read more)

Hi,

I own the following website: http://antarkia.training

It is a private site of my business where we use an e-Learning platform named Moodle.

For years, I've used Firefox to acces it, including today in the morning.

But some hours later, I can't acces it, because Firefox "thinks" it is using a secure connection (https), and it is not "well configured".

When I check the error information, I find this (I'm translating from Spanish):

antarkia.training uses an unvalid security certificate. The certificate is only valid for the following names: training.uwpd.wisc.edu, www.training.uwpd.wisc.edu Code error: SSL_ERROR_BAD_CERT_DOMAIN

The domain https://training.uwpd.wisc.edu/ also uses a Moodle platform, that I checked some days ago.

If I add the exception to Firefox, instead of seeing the "antarkia.training" Moodle webpage, I see the "training.uwpd.wisc.edu" Moodle webpage.

I've cleared the cache, cookies, etc., as well as all the exceptions I've created in Firefox, through the advanced options of the configuration (preferences) area.

Any suggestions will be appreciated.

PS If I usea another browser (Google Chrome, Opera, SeaMonkey), everything works well).

David Hernández

Asked by David Hernández 2 years ago

Answered by David Hernández 2 years ago

  • Solved
  • Archived

I can't bypass certificate warnings anymore (HSTS)

In short, I want to be able to bypass certificate warnings. Yes, I've seen this: https://support.mozilla.org/en-US/questions/1169632 "When there is HSTS(HTTPS Strict Tran… (read more)

In short, I want to be able to bypass certificate warnings.

Yes, I've seen this: https://support.mozilla.org/en-US/questions/1169632 "When there is HSTS(HTTPS Strict Transport Security) set on the server, you cannot add a exception"

In less short, my case (because one needs to always justify one's methods), I set up a subdomain on a separate IP/host and I'm trying to test some project for which I use a webpage as a small visible part. However, the domain uses HSTS (HSTS == very nice).

However, I'm just casually testing something using a subdomain (or even a fake domain, or a real domain pointing to a new server being prepared, maybe using /etc/hosts) pointing to an external or internal IP on some old computer on my LAN or even on my own computer. And that's not possible anymore.

People should always have the option to bypass a warning, and I'm all for the warnings. If anything, there shouldn't have been a box with the option "always remember" ticked by default. There are other cases where this can be useful, some we don't even know yet.

Asked by BatManuel 2 years ago

Answered by philipp 2 years ago

  • Solved
  • Archived

ERROR CODE: SEC_ERROR_OCSP_INVALID_SIGNING_CERT

Firefox does not allow me to open this site: https://www.mysubs.co.za/ . It gives the following error code :SEC_ERROR_OCSP_INVALID_SIGNING_CERT. This is the site that I … (read more)

Firefox does not allow me to open this site: https://www.mysubs.co.za/ . It gives the following error code :SEC_ERROR_OCSP_INVALID_SIGNING_CERT.

This is the site that I read my local newspaper on daily.

It is opening fine on other browsers like Chrome

Asked by greenleader 2 years ago

Answered by cor-el 2 years ago

  • Solved
  • Archived

Constantly getting SSL_ERROR_RX_UNKNOWN_ALERT when trying to access some sites and Youtube videos won't load

Hello, Just yesterday I started having issues on my computer with Firefox. I play Elite Dangerous and went to the forums to check a recent update, and instead it sends me… (read more)

Hello,

Just yesterday I started having issues on my computer with Firefox. I play Elite Dangerous and went to the forums to check a recent update, and instead it sends me to an error screen with the message: "SSL_ERROR_RX_UNKNOWN_ALERT."

Screenshots:

https://i.imgur.com/gwGHUxG.png

https://i.imgur.com/zLztR9u.png

I refreshed firefox, deleted cache data/cookiees, etc. I also uninstalled AdBlockerPlus thinking that was the problem. None of these solved the issue, and Firefox works fine on my home internet (same internet as this PC) on my Windows Surface Pro 3 tablet.

Thank You

Asked by flavivsaetivs 2 years ago

Answered by flavivsaetivs 2 years ago