Weird "Insecure Connection" behavior
Hello,
Starting Firefox and going to https://www.israelweather.co.il/week.asp - I get the "Insecure Connection" page. If, however, I go to a different site and then go to https://www.israelweather.co.il/week.asp - Firefox displays the page.
Any explanation or a way to solve the issue?
Thank you.
Ausgewählte Lösung
Maybe there is a perfectly logical explanation?
When I check the site using this diagnostic page --
https://www.ssllabs.com/ssltest/analyze.html?d=www.israelweather.co.il&latest
-- it says there is an incomplete chain. Firefox requires sites to send not just their own certificate, but any intermediate certificates required to prove that their certificate can be verified all the way back to a trusted root certificate included with Firefox.
When sites don't do that, you sometimes know and you sometimes don't know. As you browse, Firefox receives and caches intermediate certificate, so if you have visited a site that happens to have the same chain before visiting the weather site, no problem, Firefox uses its cache.
By the way, the certificates are cached in a file named cert9.db in your Firefox profile folder. If for any reason that file is deleted, Firefox will start a new one with the trusted root certificates, but your previously cached intermediate certificates will be gone.
Incidentally, that diagnostic page gives the weather site a terrible grade. Hopefully it doesn't require you to submit any sensitive information, or display any personal data back.
Diese Antwort im Kontext lesen 👍 1Alle Antworten (4)
Ausgewählte Lösung
Maybe there is a perfectly logical explanation?
When I check the site using this diagnostic page --
https://www.ssllabs.com/ssltest/analyze.html?d=www.israelweather.co.il&latest
-- it says there is an incomplete chain. Firefox requires sites to send not just their own certificate, but any intermediate certificates required to prove that their certificate can be verified all the way back to a trusted root certificate included with Firefox.
When sites don't do that, you sometimes know and you sometimes don't know. As you browse, Firefox receives and caches intermediate certificate, so if you have visited a site that happens to have the same chain before visiting the weather site, no problem, Firefox uses its cache.
By the way, the certificates are cached in a file named cert9.db in your Firefox profile folder. If for any reason that file is deleted, Firefox will start a new one with the trusted root certificates, but your previously cached intermediate certificates will be gone.
Incidentally, that diagnostic page gives the weather site a terrible grade. Hopefully it doesn't require you to submit any sensitive information, or display any personal data back.
Geändert am von jscher2000 - Support Volunteer
Hello jscher2000,
Thank you for the detailed explanation. I appreciate it.
I've recently upgrades from FF 52 to FF 64 (had a lot of modifications I didn't want to lose) and mainly used its private window.
Thanks to your explanation I used a non-private window, FF cached the certificate and all is well now. No sensitive data. :)
Best regards.
Its fresh Installation Mozilla firefox on Windows 10, Installed FF 60.5 esr successfully unable to browser Internet in FF, Getting the error seems like below Your connection was not secure , it is not possible to add an exception for this site. What can be reason in FF Browsers, is somthing help on this?
Hi chaitu, jscher2000's post was marked as the solution by the person who asked the original question (Yaron). Your issue may have similar symptoms, but it is likely a different cause/solution. You should use https://support.mozilla.org/en-US/questions/new where volunteers can get more details about your setup.
Because this thread is solved and more people might start using it for their own questions, I'm going to lock it.