Potential Security Issue
Hi,
Firefox is displaying this message: Did Not Connect: Potential Security Issue
Firefox detected a potential security threat and did not continue to l.mail.people.com because this website requires a secure connection
and does NOT let me continue... HOWEVER, if I copy n paste the URL (https://l.mail.people.com/rts/go2.aspx?h=16465956&tp=i-1NHD-9U-36Hb-1OjSfX9-Hv-5EjIU-1c-Xmrj-1OjOLzQ-l78hyiHVom-1J3ttn&x=6b160f0f640ceeb5fd6f8fe1a3284d4886844914%7c739139%7c20220211%7c021122%7c739139%7c79459191515) to a DIFFERENT browser, there are NO issues with it.
Why is Firefox complaining and how do I tell it to STOP?
ప్రత్యుత్తరాలన్నీ (16)
Very odd. I can get to https://people.com/ When I use L.mail.people.com I get nothing.
But if I use https://mail.people.com/ I get
Did Not Connect: Potential Security Issue
Firefox detected a potential security threat and did not continue to mail.people.com because this website requires a secure connection.
Pressing the Advanced button gives me: Error code: SSL_ERROR_BAD_CERT_DOMAIN
- MOZILLA_PKIX_ERROR_MITM_DETECTED
- uses an invalid security certificate SSL_ERROR_BAD_CERT_DOMAIN
- configured their website improperly
How to troubleshoot the error code "SEC_ERROR_UNKNOWN_ISSUER" on secure websites https://support.mozilla.org/en-US/kb/troubleshoot-SEC_ERROR_UNKNOWN_ISSUER
There is security software like Avast, Kaspersky, BitDefender and ESET that
intercept secure connection certificates and send their own.
https://support.mozilla.org/en-US/kb/firefox-cant-load-websites-other-browsers-can
https://support.mozilla.org/en-US/kb/firefox-and-other-browsers-cant-load-websites
https://support.mozilla.org/en-US/kb/secure-connection-failed-firefox-did-not-connect
https://support.mozilla.org/en-US/kb/websites-dont-load-troubleshoot-and-fix-errors
I had already looked at some of those common URL's, none of which gives me the choice to continue on and ignore the "stupidity" of Firefox (its People magazine for christs sake). I was hoping to add it to some exclusions list, but nothing said that either. This all did work until a few days ago, so Firefox changed something.
I ran a test using: https://www.ssllabs.com
Certificate name mismatch
What does this mean?
We were able to retrieve a certificate for this site, but the domain names listed in it do not match the domain name you requested us to inspect. It's possible that:
The web site does not use SSL, but shares an IP address with some other site that does.
The web site no longer exists, yet the domain name still points to the old IP address, where some other site is now hosted.
The web site uses a content delivery network (CDN) that does not support SSL.
The domain name is an alias for a web site whose main name is different, but the alias was not included in the certificate by mistake.
Hi,
You have good info (in both post), but what are you stating/implying? I'm looking for a solution to avoid this issue and it appears you are just giving proof/statements to "approve" what Firefox is doing. Is there a resolution?
Sorry, I was still doing research.
I can't help any further and called for more help.
Ok, what has happened with Firefox? Its complaining about security issues on other websites also (see pic). These all used to work.
Sorry for the late reply. Been in Hospital.
k-insiders.com is now working.
FredMcD said
Sorry for the late reply. Been in Hospital. k-insiders.com is now working.
Correct,,, they "admitted" that they had a problem and fixed it. People magazine website still has issues and apparently they aren't smart enough to know it.
My suggested workaround for People magazine: do not use the click-tracking links in their email messages, just go to the main site and find the story you want to read.
My more general comment: Firefox might be upgrading that link from HTTP to HTTPS causing this problem. If you right-click > Copy Link from the email message and paste it somewhere to inspect the URL, does the message use HTTPS at the beginning of the URL or is Firefox adding that?
jscher2000 said
My suggested workaround for People magazine: do not use the click-tracking links in their email messages, just go to the main site and find the story you want to read. My more general comment: Firefox might be upgrading that link from HTTP to HTTPS causing this problem. If you right-click > Copy Link from the email message and paste it somewhere to inspect the URL, does the message use HTTPS at the beginning of the URL or is Firefox adding that?
Its really strange, the first one that I click on works... then subsequent ones don't... so I copy n paste it into a different browser and it works fine... so I tend to blame Firefox (based on those 2 statements)
Do the first and second links both start with the same protocol in the message where you are clicking them?
jscher2000 said
Do the first and second links both start with the same protocol in the message where you are clicking them?
Yes, that's why its so strange... Firefox "likes" one and "bitches" about the other... so I just did a test... clicked 1 (it worked) clicked it again (it didn't work)... my words are "stupid" Firefox
cor-el said
See https://www.ssllabs.com/ssltest/analyze.html?d=mail.people.com
I'm not sure what this is supposed to mean or how to read it.
This domain mismatch error likely means that you need to use the http:// protocol and not the https:// protocol to access this server.
cor-el said
This domain mismatch error likely means that you need to use the http:// protocol and not the https:// protocol to access this server.
It comes from a email, so I click on the link... I had thought about HTTP vs HTTPS, when I remove the S, it still doesn't work.