Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

GeoTrust SSL web site and "This Connection is Untrusted"

  • 2 ŋuɖoɖowo
  • 209 masɔmasɔ sia le wosi
  • 24 views
  • Nuɖoɖo mlɔetɔ Hainesy82

more options

My web site works fine in Chrome and IE6/IE7/IE8 etc.

However - in Firefox I see this:-

This Connection is Untrusted You have asked Firefox to connect securely to 1id.com, but we can't confirm that your connection is secure. ... Technical Details The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)

I'm guessing I have to include some extra certs from my web site (apache) so Firefox can detect that my (expensive!) Geotrust SSL CERT is valid.

How would I do this?

Why is Firefox the only browser that's unhappy?

My web site works fine in Chrome and IE6/IE7/IE8 etc. However - in Firefox I see this:- This Connection is Untrusted You have asked Firefox to connect securely to 1id.com, but we can't confirm that your connection is secure. ... Technical Details The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer) I'm guessing I have to include some extra certs from my web site (apache) so Firefox can detect that my (expensive!) Geotrust SSL CERT is valid. How would I do this? Why is Firefox the only browser that's unhappy?

All Replies (2)

more options

Ha - fixed it - I added this to my apache config

SSLCertificateChainFile /../blah.crt

The really odd thing is - this has worked fine for 5 years, and my new SSL certificate renewal was the same kind, from the same issuer... really WEIRD how it used to work OK last month without that!!!

It's kind of typical of the arrogant Mozilla attitude I've come to expect in my experience. Instead of the 1 firefox tech taking 5 mins to put intermediate CAs into Firefox, like every other browser already does - Mozilla thinks they should make every one of millions of web site operators install 3rd party CA certs on their web sites instead.

Sheesh... reminds me of some years ago when I reported some SSL errors to the Netscape (firefox grandaddy) T-Shirt-for-a-bug competition. Everyone else got a free T-shirt for their bug reports. I got a cease-and-desist demand from their lawyers. Bugs were fine - as long as we weren't reporting anything SSL related it seems.

more options