X
Tocca qui per la versione per piattaforma mobile del sito.

Forum di supporto

Questa discussione è archiviata. Inserire una nuova richiesta se occorre aiuto.

The certificate is not trusted because no issuer chain was provided

Inserita

I have a problem accessing an https website with Firefox (26.0), but have no problems accessing it with either Chrome or IE. The particular URL deep links into a message forum.

https://www.lotro.com/forums/showthread.php?535472-Update-12-1-Scaling-Instance-Loot

I get the following error message:

This connection is untrusted You have asked Firefox to connect securely to www.lotro.com, but we can't confirm that your connection is secure. www.lotro.com uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer)

Adding an exception works, but only for this one message thread. The next time I have a different thread we go through the same routine.

OK, I've read the forums a bit: Disabled all Add-ons I'm not running any SSL scanning. Both browser.xul.error_pages.enabled and browser.xul.error_pages.expert_bad_cert are set to True. Certificate dates are fine as is my clock/date. I've deleted cert8.db

When it does load rather than getting a lock I get an exclamation point and a mouseover says Website does not supply identify information.

When I tell Firefox to get the certificate I get:

Certificate Status: This site attempts to identify itself with invalid information. Unknown Identity Certificate is not trusted, because it hasn't been verified by a recognized authority using a secure signature.

When I view the certificate I find: Issued To Common Name (CN) *.lotro.com Organization (O) The Saul Zaentz Company Organizational Unit (OU) Secure LInk SSL Wirecard Issued By CN Network Solutions Certificate Authority O Network Solutions L.L.C. OU <Not Part of Certificate> Validity Issued on 1/3/2012 Expires on 1/17/2016

Under Details > Extensions I find Certificate Basic Constraints: Critical, Is not a Certificate Authority.

The security trust chain looks like this:

USERTrust

UTN-USER-First-Hardware Network Solutions Certificate Authority *.lotro.com

I have a problem accessing an https website with Firefox (26.0), but have no problems accessing it with either Chrome or IE. The particular URL deep links into a message forum. https://www.lotro.com/forums/showthread.php?535472-Update-12-1-Scaling-Instance-Loot I get the following error message: This connection is untrusted You have asked Firefox to connect securely to www.lotro.com, but we can't confirm that your connection is secure. www.lotro.com uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer) Adding an exception works, but only for this one message thread. The next time I have a different thread we go through the same routine. OK, I've read the forums a bit: Disabled all Add-ons I'm not running any SSL scanning. Both browser.xul.error_pages.enabled and browser.xul.error_pages.expert_bad_cert are set to True. Certificate dates are fine as is my clock/date. I've deleted cert8.db When it does load rather than getting a lock I get an exclamation point and a mouseover says Website does not supply identify information. When I tell Firefox to get the certificate I get: Certificate Status: This site attempts to identify itself with invalid information. Unknown Identity Certificate is not trusted, because it hasn't been verified by a recognized authority using a secure signature. When I view the certificate I find: Issued To Common Name (CN) *.lotro.com Organization (O) The Saul Zaentz Company Organizational Unit (OU) Secure LInk SSL Wirecard Issued By CN Network Solutions Certificate Authority O Network Solutions L.L.C. OU <Not Part of Certificate> Validity Issued on 1/3/2012 Expires on 1/17/2016 Under Details > Extensions I find Certificate Basic Constraints: Critical, Is not a Certificate Authority. The security trust chain looks like this: USERTrust UTN-USER-First-Hardware Network Solutions Certificate Authority *.lotro.com

Dettagli aggiuntivi sul sistema

Plugin installati

  • Shockwave Flash 11.9 r900
  • Google Update
  • iTunes Detector Plug-in
  • Adobe PDF Plug-In For Firefox and Netscape 11.0.05
  • 5.1.20913.0
  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Picasa plugin
  • Pando Web Plugin
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • NPWLPG
  • Windows Activation Technologies Plugin for Mozilla
  • The plug-in allows you to open and edit files using Microsoft Office applications
  • Provides additional functionality on Facebook. See our web site for details.
  • Office Authorization plug-in for NPAPI browsers

Applicazione

  • Firefox 26.0
  • User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:26.0) Gecko/20100101 Firefox/26.0
  • URL per il supporto: https://support.mozilla.org/1/firefox/26.0/WINNT/en-US/

Estensioni

  • Adblock Plus 2.4 ({d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d})
  • Add Bookmark Here ² 23.0.20131128 (abhere2@moztw.org)
  • ColorZilla 2.8 ({6AC85730-7D0F-4de0-B3FA-21142DD85326})
  • DoNotTrackMe: Online Privacy Protection 3.1.1030 (donottrackplus@abine.com)
  • Evernote Web Clipper 5.9.1 ({E0B8C461-F8FB-49b4-8373-FE32E9252800})
  • Ghostery 5.0.6 (firefox@ghostery.com)
  • LastPass 3.0.12 (support@lastpass.com)
  • Troubleshooter 1.1a (troubleshooter@mozilla.org)
  • Xmarks 4.2.3 (foxmarks@kei.com)

Javascript

  • incrementalGCEnabled: True

Grafica

  • adapterDescription: AMD Radeon HD 6800 Series
  • adapterDescription2:
  • adapterDeviceID: 0x6738
  • adapterDeviceID2:
  • adapterDrivers: aticfx64 aticfx64 aticfx64 aticfx32 aticfx32 aticfx32 atiumd64 atidxx64 atidxx64 atiumdag atidxx32 atidxx32 atiumdva atiumd6a atitmm64
  • adapterDrivers2:
  • adapterRAM: 1024
  • adapterRAM2:
  • adapterVendorID: 0x1002
  • adapterVendorID2:
  • clearTypeParameters: DISPLAY1 [ Gamma: 2200 Pixel Structure: RGB ClearType Level: 100 Enhanced Contrast: 100 ] DISPLAY2 [ Gamma: 2200 Pixel Structure: RGB ClearType Level: 100 Enhanced Contrast: 100 ]
  • direct2DEnabled: True
  • directWriteEnabled: True
  • directWriteVersion: 6.1.7601.18245
  • driverDate: 10-8-2013
  • driverDate2:
  • driverVersion: 13.152.1.8000
  • driverVersion2:
  • info: {u'AzureCanvasBackend': u'direct2d', u'AzureFallbackCanvasBackend': u'cairo', u'AzureContentBackend': u'direct2d', u'AzureSkiaAccelerated': 0}
  • isGPU2Active: False
  • numAcceleratedWindows: 1
  • numTotalWindows: 1
  • webglRenderer: Google Inc. -- ANGLE (AMD Radeon HD 6800 Series Direct3D9Ex vs_3_0 ps_3_0)
  • windowLayerManagerRemote: False
  • windowLayerManagerType: Direct3D 10

Preferenze modificate

  • accessibility.typeaheadfind.flashBar: 0
  • browser.cache.disk.capacity: 358400
  • browser.cache.disk.smart_size.first_run: False
  • browser.cache.disk.smart_size.use_old_max: False
  • browser.cache.disk.smart_size_cached_value: 358400
  • browser.places.smartBookmarksVersion: 4
  • browser.privatebrowsing.autostart: True
  • browser.search.param.yahoo-fr: chr-greentree_ff&ilc=12&type=714647
  • browser.search.useDBForOrder: True
  • browser.sessionstore.upgradeBackup.latestBuildID: 20131205075310
  • browser.startup.homepage: https://www.google.com/
  • browser.startup.homepage_override.buildID: 20131205075310
  • browser.startup.homepage_override.mstone: 26.0
  • dom.mozApps.used: True
  • extensions.lastAppVersion: 26.0
  • gfx.direct3d.last_used_feature_level_idx: 0
  • keyword.URL: http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=714647&p=
  • network.cookie.cookieBehavior: 1
  • network.cookie.prefsMigrated: True
  • places.database.lastMaintenance: 1387498258
  • places.history.expiration.transient_current_max_pages: 104858
  • plugin.disable_full_page_plugin_for_types: application/pdf
  • plugin.importedState: True
  • privacy.donottrackheader.enabled: True
  • privacy.sanitize.migrateFx3Prefs: True
  • privacy.sanitize.sanitizeOnShutdown: True
  • storage.vacuum.last.index: 1
  • storage.vacuum.last.places.sqlite: 1386479964

Varie

  • User JS: No
  • Accessibilità: No
jscher2000
  • Top 10 Contributor
3993 soluzioni 34836 risposte

Hi Paul5358, I've been assuming the "Software Security Device" certificates are accumulated as Firefox encounters and validates them. If that's true, your lack of such items probably is due to deleting your old certificate file (cert8.db). But I may be wrong about the source of those.

Hi Paul5358, I've been assuming the "Software Security Device" certificates are accumulated as Firefox encounters and validates them. If that's true, your lack of such items probably is due to deleting your old certificate file (cert8.db). But I may be wrong about the source of those.
cor-el
  • Top 10 Contributor
  • Moderator
13072 soluzioni 119680 risposte

Yes, certificates that show as "Software Security Device" are intermediate certificates that Firefox automatically stores for future use when you visit a website the send such a certificate.

If a server doesn't send a full certificate chain then you won't get an error when Firefox has stored missing intermediate certificates from visiting a server in the past that has send it, but you do get an error if this intermediate certificate isn't stored.

Yes, certificates that show as "Software Security Device" are intermediate certificates that Firefox automatically stores for future use when you visit a website the send such a certificate. If a server doesn't send a full certificate chain then you won't get an error when Firefox has stored missing intermediate certificates from visiting a server in the past that has send it, but you do get an error if this intermediate certificate isn't stored.
larryq 0 soluzioni 2 risposte

I had this same error. Started up for no reason at all, that I could figure. Then, I noticed I had Fiddler running in the background.

Closing it made the problem go away-- Fiddler had done something strange. When I went to add an exception to a site and looked at the Certificate Status I saw a bunch of entries in the Common Name and Organization info stating "DO_NOT_TRUST" and "DO_NOT_TRUST_FiddlerRoot"

I had this same error. Started up for no reason at all, that I could figure. Then, I noticed I had Fiddler running in the background. Closing it made the problem go away-- Fiddler had done something strange. When I went to add an exception to a site and looked at the Certificate Status I saw a bunch of entries in the Common Name and Organization info stating "DO_NOT_TRUST" and "DO_NOT_TRUST_FiddlerRoot"
jscher2000
  • Top 10 Contributor
3993 soluzioni 34836 risposte

Hi larryq, do you recall installing Fiddler? If not, some other software with bad intentions may have installed it. In addition to deleting those exceptions, you may want to run some supplemental malware scans. This article lists tools other Firefox users have found helpful: Troubleshoot Firefox issues caused by malware.

Hi larryq, do you recall installing Fiddler? If not, some other software with bad intentions may have installed it. In addition to deleting those exceptions, you may want to run some supplemental malware scans. This article lists tools other Firefox users have found helpful: [[Troubleshoot Firefox issues caused by malware]].
larryq 0 soluzioni 2 risposte

Yes, I specifically installed it to debug web sessions; capture HTTP response codes, etc.

As soon as I closed Fiddler my problems with FF and https certificates went away.

Yes, I specifically installed it to debug web sessions; capture HTTP response codes, etc. As soon as I closed Fiddler my problems with FF and https certificates went away.
jscher2000
  • Top 10 Contributor
3993 soluzioni 34836 risposte

Risposta utile

Hi larryq, it's nice when there is an innocent explanation.

If you still want to track HTTP traffic, you can turn off HTTPS decoding to avoid certificate issues. This article shows where that setting is in Fiddler's options: http://fiddler2.com/documentation/Con.../DecryptHTTPS.

Hi larryq, it's nice when there is an innocent explanation. If you still want to track HTTP traffic, you can turn off HTTPS decoding to avoid certificate issues. This article shows where that setting is in Fiddler's options: [http://fiddler2.com/documentation/Configure-Fiddler/Tasks/DecryptHTTPS].