Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

How to disable forced TLS certificate checking for a trusted site, when a new valid certificate is unavailable ?

  • 1 reply
  • 1 has this problem
  • 4 views
  • Last reply by cor-el

nexgen
nexgen
more options

New versions of Mozilla Firefox does not allow to define security exclusions via GUI like previous versions did. This make impossible to use some intrinsically trusted services (hosted on local organization network and physically disconnected from the internet) for which valid certificates were not and will not be updated. How to make Firefox to ignore the certificate problem ?

New versions of Mozilla Firefox does not allow to define security exclusions via GUI like previous versions did. This make impossible to use some intrinsically trusted services (hosted on local organization network and physically disconnected from the internet) for which valid certificates were not and will not be updated. How to make Firefox to ignore the certificate problem ?

All Replies (1)

cor-el
cor-el
  • Moderator
more options

Websites may try to fallback to a lower TLS version in a way that is no longer allowed in current releases or may be using a deprecated cipher suite.

You can open the about:config page via the location/address bar and use its search bar to locate this pref:

  • security.tls.insecure_fallback_hosts

You can double-click the line to modify the pref and add the full domain (TEXT) to the value of this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). There should only be domains separated by a comma in the Value column (example.com,www.example.com).

If this helps then you can contact this website and ask them to look into this and update their security.