Showing questions tagged: Show all questions

Although strict privacy is set, I am able to logg into websites, although lock icon displays message "Connection verified by a certificate issuer that is not recognized by Mozilla"

Hello, NOTICE: Currently using Firefox 120.0.1 "Update disabled by your system administrator" I am unable to update the browser, the computers are from the public librar… (read more)

Hello,

NOTICE: Currently using Firefox 120.0.1 "Update disabled by your system administrator" I am unable to update the browser, the computers are from the public library.

Like I state in the Subject, I configure the browser to strict privacy level, and I am able to visit any site I want. No problem. But on all of these, when I click the lock icon on the address bar I read "Connection verified by a certificate issuer that is not recognized by Mozilla." In fact, right now, I am visiting this website and I got that notice. View image "Firefox broser does not recognize the certificate issuer fortinet but I can visit the firefox suport website - Screenshot 2024-01-28 172732.png"

WOW... View the image "certificate issuer not recognized by Firefox - fortinet - when visiting support.firefox.com - Screenshot 2024-01-28 173041.png" for some of the info I get if I view more information about the certificate.

Then, after I logged out, the "Clear cookies and site data" link that appears after clicking the lock icon I mentioned before do not appear.

View the image "UNable to clear cookies and site data - proton.me - Screenshot 2024-01-28 141951 - edited.png"

In this same computer, I got the control "Clear cookies and site data." View image "able to clear cookies and site data - virustotal.com - Screenshot 2024-01-28 141825.png"

So more than one question:

I read other posts where users are unable to visit a website which has a certificate issued by an issuer that is not recognized by Mozilla. Why am I able to visit these websites?

What can I expect of the non appearing "Clear cookies and site data" link I described before?

Are these computers like totally hacked?

Asked by u20210512 5 months ago

Last reply by zeroknight 5 months ago

Changes on SOP and CORS on Firefox

I'm a cybersecurity professional and I'm researching about Same Origin Policy, Cross Origin Resource Sharing and how firefox deal with those things. I've find out that ve… (read more)

I'm a cybersecurity professional and I'm researching about Same Origin Policy, Cross Origin Resource Sharing and how firefox deal with those things. I've find out that versions before 102.1.0esr, cross-origin script GET requests used to attach cookies (Image 1), but in newer versions, it's not happening (Image 2). I checked the release notes but didn't find nothing about this change.

I would like to learn more about what changed and how Firefox is dealing with cookies, SOP and CORS.

Thanks!

Asked by Henrique Curi 5 months ago

Last reply by zeroknight 5 months ago

daily software update requests

I don't want to "update my software" every day. How can I turn this function completely off ? This continuous badgering makes me want to switch to another provider. … (read more)

I don't want to "update my software" every day. How can I turn this function completely off ? This continuous badgering makes me want to switch to another provider.

Asked by mikecaruso363 1 month ago

Last reply by cor-el 1 month ago