Fragen mit folgendem Schlagwort anzeigen: Alle Fragen anzeigen
  • Gelöst
  • Archiviert

Completely disable "this plugin is vulnerable and should be updated" page.

Is there a way to either completely disable this check, or allow a global pass for all websites? I am aware that I can add individual websites by clicking the icon in the… (Lesen Sie mehr)

Is there a way to either completely disable this check, or allow a global pass for all websites?

I am aware that I can add individual websites by clicking the icon in the location bar and telling it to always load plugins to that particular site, however for the particular project I am configuring firefox for this is unfortunately not an option - if I can't turn this off I will need to look into other browser options which would be an incredible pain as right now the setup is perfected minus this one point.

I have had a look in the about:permissions page and the only option there for Plugins is 'Allow' or 'Always ask'. I have this set to allow but clearly that the above warning is not influenced by this.

Gefragt von sparcrypt vor 7 Jahren

Beantwortet von philipp vor 7 Jahren

  • Gelöst
  • Archiviert

Firefox no longer trusts my internal certificate authority used for internal sites on our domain.

The error: SEC_ERROR_UNKNOWN_ISSUER. The certificates use sha256 for their signature algorithm. Chrome and Edge both see the certificates as valid. This is a recent chang… (Lesen Sie mehr)

The error: SEC_ERROR_UNKNOWN_ISSUER.

The certificates use sha256 for their signature algorithm.

Chrome and Edge both see the certificates as valid.

This is a recent change, I believe starting with Firefox 55.

Thanks for any help with this!

Gefragt von elliotstarks vor 2 Jahren

Beantwortet von cor-el vor 2 Jahren

  • Gelöst
  • Archiviert

what does The requested URL was rejected. Please consult with your administrator. Your support ID is: 17000598679359569722 mean?

I am getting this block to a website that I have been using successfully for years. Last successful access was 8 hours ago. Now this error appearing. I have deleted cooki… (Lesen Sie mehr)

I am getting this block to a website that I have been using successfully for years. Last successful access was 8 hours ago. Now this error appearing. I have deleted cookies and cache but problem still appears when trying to enter address.

Gefragt von mwpsongs vor 2 Jahren

Beantwortet von cor-el vor 2 Jahren

  • Gelöst
  • Archiviert

Can I save or export saved passwords with Firefox in order to recover them in a new computer?

I will soon be getting a new computer. Having a large number of websites and respective access passwords saved in Firefox Mozilla, it would be very convenient to be able … (Lesen Sie mehr)

I will soon be getting a new computer. Having a large number of websites and respective access passwords saved in Firefox Mozilla, it would be very convenient to be able to export this information to the new machine after installing Firefox, as one can do with Bookmarks. Is this possible for websites+passwords?

Gefragt von Joao Andrade Peres vor 4 Jahren

Beantwortet von cor-el vor 4 Jahren

  • Gelöst
  • Archiviert

Disable HTTPS redirect

How do I disable HTTPS redirect. I am "aware of the risks" blah blah paranoid blah. And well aware of what I'm doing. But for some reason with 32 no everything heads over… (Lesen Sie mehr)

How do I disable HTTPS redirect. I am "aware of the risks" blah blah paranoid blah. And well aware of what I'm doing. But for some reason with 32 no everything heads over to https including non-https bookmarks.

No matter how I type it in; HTTP://www.xxxx www.xxxxx

I would like to find some way, by setting, about:config command (or hack if I have to) or even an extension someone could point me to that could stop this maddening overuse of secure transfers.

Gefragt von lostinlodos vor 5 Jahren

Beantwortet von guigs vor 5 Jahren

  • Gelöst
  • Archiviert

Is there a way to disable the HSTS ( HTTP Strict Transport Security ) list built into Firefox or to allow exceptions?

HSTS is problematic in that it incorrectly assumes that all users trust the default list of CAs and makes the adding of exceptions impossible even by advanced users. For … (Lesen Sie mehr)

HSTS is problematic in that it incorrectly assumes that all users trust the default list of CAs and makes the adding of exceptions impossible even by advanced users.

For example, torproject.org is inaccessible on Firefox unless I am willing to trust DigiCert to never sign a fake certificate either by negligence or by court order of any country in witch they operate, thereby making every https: site ( not just torproject.org ) vulnerable to a MITM attack.

A user disabling CAs in the browser is not unreasonable given the ever growing list of CAs built into Firefox ( each one a potential point of failure ), the number of CAs that have been recently compromised and the very low standards required to obtain a certificate.

While I understand the desire to protect the average user who doesn't understand how certificates work and will click past warnings without reading them, this protection should not come at the expense of more security conscious users.

I would recommend an about:config setting that would allow the creation of exceptions by users who explicitly choose to do so.

So far the only kludge I have been able to come up with is to modify c:\program files\mozilla firefox\xul.dll with a hex editor and replace the sites on the list ( this is far from an ideal solution ).

Gefragt von strange vor 7 Jahren

Beantwortet von dumdidadida vor 7 Jahren

  • Gelöst
  • Archiviert

"Your connection is not secure" on *any* SSL site

I get this error message on *any* secure site I go to (youtube, gmail, Wikipedia, even Mozilla.org) Your connection is not secure The owner of www.mozilla.org has configu… (Lesen Sie mehr)

I get this error message on *any* secure site I go to (youtube, gmail, Wikipedia, even Mozilla.org)

Your connection is not secure

The owner of www.mozilla.org has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.

Learn more…

Or this one...

Your connection is not secure

The owner of www.youtube.com has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.

This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely. As a result, it is not possible to add an exception for this certificate.

Learn more…

www.youtube.com uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.

(Error code: sec_error_unknown_issuer)

Checked in Options>Advanced>View Certificates>Authorities and it looks like there are plenty of root certificates there. Tried removing and reinstalling Firefox, and I still get the same error. What's going on? I couldn't even connect to Mozilla.org with Firefox, so I had to post this question with Internet Explorer.

Gefragt von imrazor vor 4 Jahren

Beantwortet von philipp vor 4 Jahren

  • Gelöst
  • Archiviert

How to allow a restricted port?

I am trying to get to a specific port and Firefox blocks the access, https://x.x.x.x:xxxxx. This is the message: This address uses a network port which is normally used … (Lesen Sie mehr)

I am trying to get to a specific port and Firefox blocks the access, https://x.x.x.x:xxxxx. This is the message:

This address uses a network port which is normally used for purposes other than Web browsing. Firefox has canceled the request for your protection.

How can I allow a specific port?

Gefragt von BrentDelta vor 4 Jahren

Beantwortet von jscher2000 vor 4 Jahren

  • Gelöst
  • Archiviert

How do I go about Deleting / Removing Java Deployment Toolkit plugin in Firefox

This plug in has been disabled by Firefox due to vulnerabilities so therefore I see no need to keep it on my system and would like some help in the removal as it does not… (Lesen Sie mehr)

This plug in has been disabled by Firefox due to vulnerabilities so therefore I see no need to keep it on my system and would like some help in the removal as it does not have an option for doing this. Also when I'm visiting some sites that should be displayed as HTTPS but they only show as HTTP how do I fix this issue??? Any help would greatly appreciated thank you very much cheers.

Gefragt von Puddle5OfMud!!! vor 6 Jahren

Beantwortet von TheOldFox vor 6 Jahren

  • Gelöst
  • Archiviert

How do I get Firefox to re-check a websites ssl certificate? It's giving me a message saying my site's ssl certificate is expired when it isn't.

The ssl certificate on my side did expire but it was renewed a few days later. It's been over a month since it was renewed but I still have Firefox users reporting the er… (Lesen Sie mehr)

The ssl certificate on my side did expire but it was renewed a few days later. It's been over a month since it was renewed but I still have Firefox users reporting the error message.

This Connection is Untrusted Techinical Details: eng.fanpageengine.com uses an invalid security certificate. The cerificate expired on 1/31/2013 3:59pm.

This is a link to a 3rd party site that verifies the ssl certificate is current. http://www.networking4all.com/en/support/tools/site+check/report/?fqdn=https%3A%2F%2Feng.fanpageengine.com&protocol=https

I just need the steps they'll need to make Firefix update its record.

Additional information. This doesn't effect everyone visiting my website using Firefox. It seems to only effect people who visited the site while the ssl certificate was expired. However clearing the cache and cookies has no effect.

Thanks for the help.

Gefragt von bosschase vor 7 Jahren

Beantwortet von bosschase vor 7 Jahren

  • Gelöst
  • Archiviert

How do I trust a self-signed issuer certificate?

I created a self-signed CA cert using openssl, and imported it into Firefox, but when I select it in the Certificate Manager under “Your Certificates” and click “View…”, … (Lesen Sie mehr)

I created a self-signed CA cert using openssl, and imported it into Firefox, but when I select it in the Certificate Manager under “Your Certificates” and click “View…”, I see the message “Could not verify this certificate because the issuer is not trusted.”

https://www.dropbox.com/s/i38v78802ym9fug/Screenshot%202014-04-15%2010.49.14.png

When I visit the site that I set up with an SSL cert signed by that same self-signed CA cert, I get an untrusted connection warning with the following technical details: “staging.cakemade.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is not trusted. (Error code: sec_error_untrusted_issuer)”

https://www.dropbox.com/s/rvq00r0pdn99rd6/Screenshot%202014-04-15%2010.57.54.png

When I view the site certificate, it correctly identifies the issuer as the CA cert that I imported, but also displays the message “Could not verify this certificate because the issuer is not trusted.”

https://www.dropbox.com/s/b3no5pdhf9ddx5h/Screenshot%202014-04-15%2010.57.29.png

I am using Firefox Aurora, and apply updates daily. I am using the default settings for OCSP.

https://www.dropbox.com/s/in58viu3q6wkxvn/Screenshot%202014-04-15%2011.02.22.png

What do I need to do to get Firefox to trust the CA cert that I imported?

Gefragt von whittle vor 6 Jahren

Beantwortet von christ1 vor 6 Jahren

  • Gelöst
  • Archiviert

"Secure connection failed" SSL_ERROR_NO_CYPHER_OVERLAP, no "Advanced" button, v.50.1.0

After the automatic update to 50.1.0, I am no longer able to connect to https web interfaces of appliances on my LAN/VPN. Before the update, I would receive a "Secure Con… (Lesen Sie mehr)

After the automatic update to 50.1.0, I am no longer able to connect to https web interfaces of appliances on my LAN/VPN.

Before the update, I would receive a "Secure Connection Failed" page with an "Advanced" button that would allow me to confirm the security exception and continue to the web page.

Initially after the update, there was no "Advanced" option and the error code was SSL_ERROR_INAPPROPRIATE_FALLBACK_ALERT. As part of exploring solutions, I did a refresh of Firefox. After the refresh, the error code is now SSL_ERROR_NO_CYPHER_OVERLAP and there is still no "Advanced" button.

I can access the page via Internet Explorer after confirming a security exception. My OS is Windows 7 Home Premium Service Pack 1.

Gefragt von sangfroid vor 3 Jahren

Beantwortet von sangfroid vor 3 Jahren

  • Gelöst
  • Archiviert

After my firefox updated to last version, i can not browse my Bizchannel CIMB

After my firefox updated to last version (37.0.1), i can not browse my Bizchannel CIMB URL : https://bizchannel.cimbniaga.co.id/corp/common2/login.do?action=loginRequest… (Lesen Sie mehr)

After my firefox updated to last version (37.0.1), i can not browse my Bizchannel CIMB

URL : https://bizchannel.cimbniaga.co.id/corp/common2/login.do?action=loginRequest

withe following error : An error occurred during a connection to bizchannel.cimbniaga.co.id. Cannot communicate securely with peer: no common encryption algorithm(s). (Error code: ssl_error_no_cypher_overlap)

What should i do ?

Gefragt von antonies378 vor 5 Jahren

Beantwortet von guigs vor 5 Jahren

  • Gelöst
  • Archiviert

Firefox refresh deleted all my passwords and cookies...how do I get them back?

When I did the Firefox Refresh it cleared my entire browser history, bookmarks, logins, passwords, etc...how do I get these back and why would Mozilla create such an insi… (Lesen Sie mehr)

When I did the Firefox Refresh it cleared my entire browser history, bookmarks, logins, passwords, etc...how do I get these back and why would Mozilla create such an insidious button?

Gefragt von Tmcnair2 vor 2 Jahren

Beantwortet von Mkll vor 2 Jahren

  • Gelöst
  • Archiviert

What does this mean?: Activate Java Deployment Toolkit. This plugin(?) has known vulnerabilities."

I updated my wife's WinXP laptop to Firefox 24 last night and as soon as she tried to run RuneScape (runescape.com) the above message appeared in a window. (I can't remem… (Lesen Sie mehr)

I updated my wife's WinXP laptop to Firefox 24 last night and as soon as she tried to run RuneScape (runescape.com) the above message appeared in a window. (I can't remember the exact wording.) On one hand it appears to be telling her to activate something. On the other hand it seems to say don't activate it. How should she or I respond to this message?

Gefragt von nju001 vor 6 Jahren

Beantwortet von cor-el vor 6 Jahren

  • Gelöst
  • Archiviert

Getting SSL_ERROR_NO_CYPHER_OVERLAP when attempting a site with a self-signed certificate

I'm developing a web app. Currently, I'm using a self-signed certificate (getting it properly signed comes later). When I have the web server set so that it only accepts… (Lesen Sie mehr)

I'm developing a web app. Currently, I'm using a self-signed certificate (getting it properly signed comes later).

When I have the web server set so that it only accepts TLS1.1 and TLS1.2, I'm getting a SSL_ERROR_NO_CYPHER_OVERLAP error. And, of course, trying the 'use outdated security' link doesn't work, since the web server won't allow those connections.

If I temporarily allow insecure connections on the web server, Firefox will then allow me to accept the cert. After the cert is accepted, Firefox can then connect over only TLS1.1 and TLS1.2. So, most of the time, Firefox can find a common cypher for TLS1.1/1.2 connections.

(The web server is on an Ubuntu kernel, with OpenSSL1.0.1f.)

Gefragt von gshonle vor 4 Jahren

Beantwortet von gshonle vor 4 Jahren

  • Gelöst
  • Archiviert

every site I try to access gives the warning (Error code: sec_error_unknown_issuer)

this affects my computer profile only(windows 8) , and only on Firefox. I have disabled SSL on AVG as the help pages suggest, and have tried reinstalling, both with no ef… (Lesen Sie mehr)

this affects my computer profile only(windows 8) , and only on Firefox. I have disabled SSL on AVG as the help pages suggest, and have tried reinstalling, both with no effect. Anyone know how to solve this?

Gefragt von batsby vor 5 Jahren

Beantwortet von cor-el vor 5 Jahren