When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket
I was trying to access my office webmail with FF 4.0 Beta 7.
Secure Connection Failed
An error occurred during a connection to webmail.zsassociates.com.
Renegotiation is not allowed on this SSL socket.
(Error code: ssl_error_renegotiation_not_allowed)
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the web site owners to inform them of this problem. Alternatively, use the command found in the help menu to report this broken site.
All Replies (3)
What i did really works for me:
- go to address bar and type about:config then a popup will ask you for security and click "I will be careful i promise! "
- search for "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref" on the top of the filter text box
- Double click on the value that will set the value to "false"
Then go to the page you are having problem. BINGO!!! That works :) Enjoy!!
It works, but i had to change the item to TRUE
See this link for information about 'Renegotiation' (CVE-2009-3555):
You can look at the pref security.ssl.renego_unrestricted_hosts on the about:config page and add the sites that you want to allow to the string value.
Changing that pref to only allow specific web servers is better and safer that allowing global access by setting security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref to true.