cancel
Showing results for 
Search instead for 
Did you mean: 

When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket

Highlighted
New User

When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket

I was trying to access my office webmail with FF 4.0 Beta 7.

Secure Connection Failed

         An error occurred during a connection to webmail.zsassociates.com.

Renegotiation is not allowed on this SSL socket.

(Error code: ssl_error_renegotiation_not_allowed)

 The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
 Please contact the web site owners to inform them of this problem. Alternatively, use the command found in the help menu to report this broken site.
3 REPLIES
New User

Re: When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket

What i did really works for me:

  1. go to address bar and type about:config then a popup will ask you for security and click "I will be careful i promise! "
  2. search for "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref" on the top of the filter text box
  3. Double click on the value that will set the value to "false"

Then go to the page you are having problem. BINGO!!! That works Smiley Happy Enjoy!!

New User

Re: When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket

It works, but i had to change the item to TRUE

Site Moderator

Re: When trying to access a https site I get an error : renegotiation is not allowed on this SSL socket

See this link for information about 'Renegotiation' (CVE-2009-3555):

You can look at the pref security.ssl.renego_unrestricted_hosts on the about:config page and add the sites that you want to allow to the string value.

Changing that pref to only allow specific web servers is better and safer that allowing global access by setting security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref to true.