Hiển thị các câu hỏi được đánh dấu: Xem tất cả các câu hỏi

website issue: 'ocsp response for cert missing' error code

Hi there, My website sparticipant.dev.pivt.nl is having some issues on Firefox browsers (I'm seeing the issues with Firefox Version 76.0.1 (64-bits) on windows. When I n… (xem thêm)

Hi there,

My website sparticipant.dev.pivt.nl is having some issues on Firefox browsers (I'm seeing the issues with Firefox Version 76.0.1 (64-bits) on windows.

When I navigate to my website, I get the following message:

   Secure Connection Failed
   An error occurred during a connection to sparticipant.dev.pivt.nl. 
   The OCSP response does not include a status for the certificate being verified.
   Error code: MOZILLA_PKIX_ERROR_OCSP_RESPONSE_FOR_CERT_MISSING.


I checked my website's cert and looking at OCSP_RESPONSE_DATA, I think a response is sent. I tried with Chrome and that works well. What am I missing here?

Details below:

   $ openssl s_client -connect sparticipant.dev.pivt.nl:443 -status
   CONNECTED(00000005)
   depth=2 O = Digital Signature Trust Co., CN = DST Root CA X3
   verify return:1
   depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
   verify return:1
   depth=0 CN = sparticipant.dev.pivt.nl
   verify return:1
   OCSP response: 
   ======================================
   OCSP Response Data:
       OCSP Response Status: successful (0x0)
       Response Type: Basic OCSP Response
       Version: 1 (0x0)
       Responder Id: C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
       Produced At: May 29 13:11:00 2020 GMT
       Responses:
       Certificate ID:
         Hash Algorithm: sha1
         Issuer Name Hash: 7EE66AE7729AB3FCF8A220646C16A12D6071085D
         Issuer Key Hash: A84A6A63047DDDBAE6D139B7A64565EFF3A8ECA1
         Serial Number: 036F20B0259D13DB32A13163432445AB63B3
       Cert Status: good
       This Update: May 29 13:00:00 2020 GMT
       Next Update: Jun  5 13:00:00 2020 GMT
       Signature Algorithm: sha256WithRSAEncryption
            77:ac:d1:00:24:f2:3b:d9:7e:88:5e:1b:9e:9b:67:f4:69:23:
            5b:ad:27:b6:04:be:2a:f4:16:c4:e9:2f:37:aa:82:4e:ac:40:
            1f:29:9b:b6:4d:9d:2a:4c:50:91:34:3b:9e:de:da:1d:c3:40:
            59:52:8b:88:8b:38:f0:3a:de:13:ef:be:e7:52:34:a6:f4:b9:
            38:51:a5:07:97:3d:f0:73:6e:27:4c:02:f0:32:f8:e2:9a:51:
            61:d1:13:f7:4d:fd:4d:64:da:2f:64:26:e9:bc:77:59:7a:c6:
            8a:98:7d:cb:8b:8b:c1:fa:7d:cf:36:e0:cc:a1:ec:43:88:a0:
            65:05:01:19:b7:f9:c5:35:82:a2:aa:89:c3:cf:48:15:e2:b5:
            2c:73:db:e5:84:1c:7c:66:e2:f6:69:d0:2a:94:1c:b8:14:e6:
            42:14:37:eb:8e:05:bd:d8:d4:11:f2:37:b8:04:b1:3c:95:c1:
            f4:4a:24:d1:26:93:8d:61:14:7e:15:96:a3:9d:78:ef:36:23:
            44:6a:b8:1f:c2:4a:fa:cf:bb:e5:fb:4d:92:9a:ff:af:e8:b9:
            bd:ed:00:a5:5f:c1:b1:c9:45:f3:35:de:0a:06:99:ae:86:4c:
            82:61:5d:0c:4c:1e:f8:bc:9d:6b:b1:1d:3e:ae:06:14:d1:85:
            1b:0f:77:49
   ======================================
   ---
   Certificate chain
    0 s:CN = sparticipant.dev.pivt.nl
      i:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
    1 s:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
      i:O = Digital Signature Trust Co., CN = DST Root CA X3
   ---
   Server certificate
   -----BEGIN CERTIFICATE-----
   MIIFaTCCBFGgAwIBAgISA1nDVSw4hPqQn+90k0Mi5a5vMA0GCSqGSIb3DQEBCwUA
   MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
   ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA2MDExMTEwNThaFw0y
   MDA4MzAxMTEwNThaMCMxITAfBgNVBAMTGHNwYXJ0aWNpcGFudC5kZXYucGl2dC5u
   bDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOg1ep3zPYtoJenFdaJ0
   GSVz4n8AUX4FoPd2MRlR+T82ujEMplSmJNdmomQGiwaCZ/MPTkz+NtPZ4trUmaIW
   n674NHh/YQDkusYLUZ/OrOxdfrYkKZAYc2zNYHJZapMPCxryEbMLpAei6niiSxsE
   jJ06gptrSA0bhqK6K5DaypzxrSeW1CzfeKdjtz7j5T2iNS/zp/pLL0woPDnn+znd
   hMbG+5J49QN9ES8KoGUwZg8VE7kGSeSn45VWNb6SPtfAp/gVX0+MoMmGfG8+Aj70
   EMFusMkb1dfrhpng8++n15f1zC6dXYpc2yUthhFcmVd7lWI1rpZKPi8Dqcp7R0EL
   FWcCAwEAAaOCAm4wggJqMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF
   BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUIvyG9zUz2qYm
   Dl2cl4MQn6md4eswHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI
   KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0
   c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0
   c2VuY3J5cHQub3JnLzAjBgNVHREEHDAaghhzcGFydGljaXBhbnQuZGV2LnBpdnQu
   bmwwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF
   BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC
   BIH2BIHzAPEAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXJv
   ysI3AAAEAwBHMEUCIQDE9hIDVXxgV4q+8SfF0houQGl9BVEADGDKtrCRdKLbkwIg
   MyBYVxtQePIEN3JBPaZwoFf/2F54MK6pQqA8wIm+3IIAdwCyHgXMi6LNiiBOh2b5
   K7mKJSBna9r6cOeySVMt74uQXgAAAXJvysIKAAAEAwBIMEYCIQCsXZ6Qm4s/RIgS
   qMJZ+OHoYu3VC32CwiEFcA1fye3YygIhAJxc1hi/lLIaQexU4y2dnyZcD8Raj4Us
   WIjK/iqPhTNXMA0GCSqGSIb3DQEBCwUAA4IBAQBvef37hVDd5gb2v9JtkvmKokLr
   1TgjlATI/Ik3vw36lt48GnFDHH4oI2bdZpYPPhpeIVGez6qwwW+dTqJkLksN93tm
   HqMrYZ5y+QjnlQd2g+L5Jpt4/IJ/KVmb9ilkXQmIthNJ8Uqn1dR3ghTE2nx1wMgA
   svPqwA7AG0quDrSByxegxctgRxY1kzMBtl1a24cxFJRF8nUZgD93VLdkwyD+RY8b
   4r0R17B2pItXRrznRVShiiLIHNxAcXFk/40N3VEjhNmynCCwRJbeamE3p3IW10tf
   FQhHXZcL1uh9e/P0ZRimB+n2GUVxnnaVJri8yic7KsQQNu283Kqn5BKFJ2Gq
   -----END CERTIFICATE-----
   subject=CN = sparticipant.dev.pivt.nl
   issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
   ---
   No client certificate CA names sent
   Peer signing digest: SHA256
   Peer signature type: RSA-PSS
   Server Temp Key: X25519, 253 bits
   ---
   SSL handshake has read 3592 bytes and written 428 bytes
   Verification: OK
   ---
   New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256
   Server public key is 2048 bit
   Secure Renegotiation IS supported
   Compression: NONE
   Expansion: NONE
   No ALPN negotiated
   SSL-Session:
       Protocol  : TLSv1.2
       Cipher    : ECDHE-RSA-AES128-GCM-SHA256
       Session-ID: AE047012B0EC95A71C8A50983574B93BCBBC4438B66AE7A79E4C9B4CF6804FD6
       Session-ID-ctx: 
       Master-Key: C5BD7B3E6DB5EA3F723B4BA5A87C94923D2112E27832503C34DD11CE58949B5A692E7E2523CA9BBF38DD6098853FB682
       PSK identity: None
       PSK identity hint: None
       SRP username: None
       Start Time: 1591174506
       Timeout   : 7200 (sec)
       Verify return code: 0 (ok)
       Extended master secret: yes
   ---
   closed

Asked by Ludo 9 giờ trước

Last reply by McCoy 3 giờ trước

Server Authentication popup

Hey, i can't get authentication popup in this case: Server A Server B 1 site on server A My site is using some files from server B, but server B has password protection a… (xem thêm)

Hey, i can't get authentication popup in this case: Server A Server B 1 site on server A My site is using some files from server B, but server B has password protection access like in .htaccess Problem that i don't get popup required to enter log/pass for server B when i load site from server A to get those files loaded on page. If i go directly to server B and open some page from it i see popup. Also i see popup in Chrome or IE when i'm opening site from server A, but not in firefox. I tried to set different config settings in Firefox but no luck.

Firefox 77.0 (64-bit) macOS Catalina 10.15.4

Asked by vld53 7 giờ trước

Last reply by McCoy 2 giờ trước

How to delete my sync account from FireFox browser and all the data of this account

Hi guys. I tested this recently on notebook with Windows 10. I installed Firefox, sign in to my account, synced everything. Let's say, I need to delete all the data and t… (xem thêm)

Hi guys. I tested this recently on notebook with Windows 10. I installed Firefox, sign in to my account, synced everything. Let's say, I need to delete all the data and this account from this particular device. I couldn't find such an option. When I deleted my account from Firefox, all the data left on the notebook! Even when I uninstall the browser, and then install it again - browser restored all the data!!!

Is it possible to delete my sync account and all the data related to it: history, bookmarks, sessions, extensions, add-ons, everything?

Let's say, I'm signed in on a friend's laptop and need to delete everything later.

Asked by Aladdin 1 tháng trước

Last reply by cor-el 17 giờ trước

Secure Connection Failed PR_CONNECT_RESET_ERROR

By using the last version of Firefox (74.0) when visiting a website with security connection I got the following error : "Secure Connection Failed An error occurred durin… (xem thêm)

By using the last version of Firefox (74.0) when visiting a website with security connection I got the following error : "Secure Connection Failed An error occurred during a connection to .............. PR_CONNECT_RESET_ERROR The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem." With the previous versions of Firefox there was no such problem and I could visit the above website. So, please inform me what happened with ver. 74.0 ? By ver. 74.0 is no more supported some older security protocols which might have the above website, or this is a bug by the new ver. 74.0 ? Please inform me how this issue can be fixed ?

Asked by eladopoulos 2 tháng trước

Last reply by maawaleo915 23 giờ trước

Firefox unchecks "Ask to save logins and passwords for websites"

Every time I reboot my computer, Firefox unchecks the "Ask to save logins and passwords for websites" checkbox and as a result, saved logins do not appear. It is annoying… (xem thêm)

Every time I reboot my computer, Firefox unchecks the "Ask to save logins and passwords for websites" checkbox and as a result, saved logins do not appear. It is annoying and inexplicable. The logins aren't lost, but I shouldn't have to recheck the checkbox every time I start the computer. Is this a "feature" to force me to use an account to make passwords transferable by storing them in the cloud?

Asked by regeraghty 1 ngày trước

Last reply by FredMcD 1 ngày trước

  • Đã lưu trữ

Blocked by X-Frame-Options Policy

After Firefox updated, I can no longer access www.apple.com. This is the error I get now: Blocked by X-Frame-Options Policy An error occurred during a connection to idmsa… (xem thêm)

After Firefox updated, I can no longer access www.apple.com. This is the error I get now:

Blocked by X-Frame-Options Policy

An error occurred during a connection to idmsa.apple.com.

Firefox prevented this page from loading in this context because the page has an X-Frame-Options policy that disallows it.

Can anyone tell me how to fix this issue as soon as possible. Thank You.

Asked by David 6 tháng trước

Last reply by kris.sor 1 ngày trước

How to reopen popup window in a firefox container

Hello folks I am using Firefox containers & Firefox add-ons. some add-ons require me to login using my email. so it pops up a window without a url without the target … (xem thêm)

Hello folks I am using Firefox containers & Firefox add-ons. some add-ons require me to login using my email. so it pops up a window without a url without the target container. where I'm already logged in.

Asked by khaled.medhat 1 ngày trước

Last reply by yogyta kalwar 1 ngày trước

Firefox using HTTPS:// on HTTP:// website

I can not stop firefox replacing HTTP:// with HTTPS:// in urls. It seems normally you give it a url like http://anything.com and firefox tries https://anything.com:443 wh… (xem thêm)

I can not stop firefox replacing HTTP:// with HTTPS:// in urls. It seems normally you give it a url like http://anything.com and firefox tries https://anything.com:443 which fails to connect so it goes back to http and everything works.

My sites have a port number 8000. So i give it http://anything.com:8000. Firefox tries HTTPS://anything.com:8000 and gets an unencrypted response and throws this error.

   Error code: SSL_ERROR_RX_RECORD_TOO_LONG

I have tried setting browser.urlbar.autoFill to false as in [https://support.mozilla.org/en-US/que.../935614] but this does not work.

How do I prevent the replacement?

Asked by Bob 2 ngày trước

Last reply by jscher2000 2 ngày trước

Security

Internet Options under Security allows you to Restrict Websites from ever connecting to your computer. I found, find this very helpful. But it doesn't seem to work in Fir… (xem thêm)

Internet Options under Security allows you to Restrict Websites from ever connecting to your computer. I found, find this very helpful. But it doesn't seem to work in Firefox and you have no similar option!

Can you install this option for Firefox or set it up so the Internet Security options work for Firefox, or so that I can import the list of websites I never want connecting to my computer again?

Thanks, Walter.

Asked by whiz666 5 ngày trước

Last reply by TyDraniu 2 ngày trước

How to ensure Privacy Settings are honored...or is there a cached web content loophole?

I've noticed that searches retain information about my previous searches after I close the browser; 'Delete cookies and site data when Firefox is closed' setting is selec… (xem thêm)

I've noticed that searches retain information about my previous searches after I close the browser; 'Delete cookies and site data when Firefox is closed' setting is selected. My tests seem to point to a security loophole with Cached Web Content.

Question: how can I ensure privacy settings are honored, or, if there is a loophole, how can I get Firefox to also clear Cached Web Content on close?

In my repeated test cases, I used bing to search for '5/8 irrigation kit', then closed the browser and reopened. Cookies and site data show 0 bytes (see attached images), Cached Web Content show something greater than 0.

Next, I go to bing.com/news, scroll through stories, and see an advert for an irrigation kit as one of the sponsored adverts.

As a further test after the original search, I try the following to see if I was being track another way, with the same resulting sponsored advert showing:

  • Restarted laptop
  • Restarted ONT (to get a new IP) and wifi

The following 2 scenarios seemed to resolve the issue after the original search and seeing the same resulting sponsored advert:

  • Turned on VPN
  • Cleared Cached Web Content

Clearing Cached Web Content seems to be the solution, and a possible privacy loophole. Cached Web Content is not part of the auto-delete-at-close feature.

Oddly, I haven't been able to consistently replicate the above starting with the VPN on and having it on through the tests. It sometimes shows the same resulting sponsored advert, and sometimes not.

I tried to replicate this with Safari. It's auto-delete feature at close and similar privacy setting seems to work according to what I would expect with the same test scenario; which is, no previous search-informed sponsored advert.

Details:

  • Firefox 76.0.1 (64-bit)
  • Firefox privacy settings shown in attached images
  • MacBook Air 2019
  • macOS Catalina Version 10.15.4
  • Verizon Fios

Asked by KC 4 ngày trước

Last reply by cor-el 3 ngày trước

Cannot turn off automatic logine

Once I've logged in to my Firefox account, and entered my Firefox master password, it automatically inputs my username and password on a website with information that is … (xem thêm)

Once I've logged in to my Firefox account, and entered my Firefox master password, it automatically inputs my username and password on a website with information that is sensitive and that I do NOT want to share. I understand that inputting my Firefox/Mozilla master password allows me personalized access to Firefox, but it should NOT automatically enter my username and password. This only happens with this one specific website, no other website automatically inputs my username and password when I click on it. I have cleared cache, and it is not listed in my list of automatic access passwords in my Firefox settings. I do use Lastpass and have removed the Lastpass extension.

Asked by quickdrawartist 3 ngày trước

Last reply by cor-el 3 ngày trước

Certificate not working

I am trying to access a website I use for work and needed to add a certificate in the keychain (I'm on a Mac). It works fine on Chrome but since I switched to Firefox (fo… (xem thêm)

I am trying to access a website I use for work and needed to add a certificate in the keychain (I'm on a Mac). It works fine on Chrome but since I switched to Firefox (for another website that is buggy on Chrome) I can't access it. My company doesn't support Mac so no help there. Here's my error message:

An error occurred during a connection to remotegw2-dhhs.ne.gov. SSL peer was unable to negotiate an acceptable set of security parameters.

Error code: SSL_ERROR_HANDSHAKE_FAILURE_ALERT

I tried to import the certificate from my keychain but it's not visible there as an acceptable file. I have no idea what to do. Not just a liddlelost, but reallylost. Thanks!

Asked by LiddleLost 4 ngày trước

Last reply by cor-el 3 ngày trước

yahoo mail forced signout

after recent updates, Firefox will not keep me signed into Yahoo mail for more than a few hours, regardless of whether the "keep me signed in for 2 weeks" box is checked.… (xem thêm)

after recent updates, Firefox will not keep me signed into Yahoo mail for more than a few hours, regardless of whether the "keep me signed in for 2 weeks" box is checked. this problem started last week on my 4 Windows 10 computers at the same time, and the problem does not happen using Edge to access Yahoo mail.

for what it's worth, the url for the Edge Yahoo mail login page is https://mail.yahoo.com/d/folders/1?.src=fp

and the url for the Firefox login page begins exactly the same way but then continues with maybe another 150 characters.

Asked by dllutes 5 ngày trước

Last reply by Andrew 3 ngày trước