Showing questions tagged: Show all questions
  • Solved
  • Archived

Can one safely block 4.2.2.1, 4.2.2.2, &c . . . 8.8.8.8

I use Little Snitch which shows Firefox allowing connections to 8 IP addresses that, for not seeing a reason, I blocked in LS. Nevertheless, LS lets about 10% of those c… (read more)

I use Little Snitch which shows Firefox allowing connections to 8 IP addresses that, for not seeing a reason, I blocked in LS. Nevertheless, LS lets about 10% of those connections through, so I police and disconnect. On the net, I found that those IPs belong to Level3 Communications which has a bad rep among some. I contacted the Little Snitch people who advised that I was wrong & the real owner is google (not really an answer to why their program lets through even after I've blocked). But here's the thing -- I use google ONLY for e-mail; I don't want to place my computer at their disposal for anything else. SO, should I continue my blocking campaign, or let the eight IPs through. My concern is Privacy and Security.


Thanks,

goldenthal

Asked by goldenthal 4 years ago

Answered by cor-el 4 years ago

  • Solved
  • Archived

We operate in a very restricted DNS environment and downloading sites with signed wildcard SSL is very slow so how do we disable all checks and keep HTTPS?

If we were using a self-signed certificate we could add an exception. But we use a DigiCert wildcard certificate. Our sites use a very restricted DNS with maybe a dozen U… (read more)

If we were using a self-signed certificate we could add an exception. But we use a DigiCert wildcard certificate. Our sites use a very restricted DNS with maybe a dozen URLs for which a name resolves to an IP. When Firefox is used to access our sites over HTTPS it is slow and often fails to load bu serving up error messages on the security of the site. I believe this is because it is looking to verify the certificate or revocation. We do not have this issue using HTTP. I have disabled "Query OCSP" but it has not helped.

Any assistance would be appreciated.

Thanks.

Asked by ELCV 4 years ago

Answered by ELCV 4 years ago