I am not allowed to open a certain page
I am not allowed to open www.lastpass.com Firefox says it is not safe. I say it is safe. What to do???
Den här anslutningen är inte tillförlitlig
Du har instruerat Firefox att ansluta
till lastpass.com på ett säkert sätt, men det går inte att bekräfta att anslutningen verkligen är säker.
När du i normala fall försöker ansluta på ett säkert sätt
kommer webbplatser att presentera tillförlitlig identifikation som bevisar att du kommit till rätt plats. Den här webbplatsens identitet kan däremot inte verifieras.
Ti ṣàtúnṣe
All Replies (19)
https://www.lastpass.com/ should redirect to https://lastpass.com/
From what I can see, the site has a valid certificate, issued around April 2012. (If your system clock is set to an earlier date, then the certificate will be considered invalid. However, this probably would affect many sites.)
If you click the Technical Details link on the error page, can you get more information about the problem?
When you have a problem with one particular site, a good "first thing to try" is clearing your Firefox cache and deleting your saved cookies for the site.
1. Clear Firefox's Cache
orange Firefox button or Tools menu > Options > Advanced
On the Network mini-tab > Cached Web Content : "Clear Now"
2. If needed, delete the site's cookies here (this will log you out)
right-click and choose View Page Info > Security > "View Cookies"
In the search box at the top of the dialog, change the site to lastpass.com
Then remove cookies and try the site again. Any improvement?
Do you only have a problem with a secure connection on the lastpass.com site or on other websites as well?
Hi, thanks for reply. I have just upgraded from XP to win7 and installed Firefox the very same day. ( I was stupid to make a complete installation instead of upgrade to win7, but the positive of it, I got rid of several problems I hade before)
Here under is the message, in Swedish, but the error is on the last sentence.
lastpass.com använder ett ogiltigt säkerhetscertifikat. ( last pass is using an invalid security certificate)
Certifikatet är inte betrott eftersom certifikatkedjan till utfärdaren saknas. (Felkod: sec_error_unknown_issuer)
I can open other pages as far as I have tried today. And the date is correct too. Very odd situation, but I also got the message when logging in to yahoo mail, but there I got the option to continue. No option to continue here.
What are the connection settings?
- Tools > Options > Advanced : Network : Connection > Settings
- https://support.mozilla.org/kb/Options+window+-+Advanced+panel
If you do not need to use a proxy to connect to internet then try to select "No Proxy" if the default "Use the system proxy settings" setting doesn't work properly.
See "Firefox connection settings":
Can you retrieve (get) the certificate to check who issued it?
- thawte Extended Validation SSL CA
I am experinced with MF and now I made the change to No Proxy, but no difference. I have used LastPass with IE7, IE8 and M.F for at least 2-3 monts without issues. This problem came up after new install of win7, M.F yesterday. I cleared the cookies as well, but same message. There is no indo about owner of certificate. https://lastpass.com/?ac=1&opensettings=1 application/xhtml+xml UTF-8 Last pass works on IE8 today. If i try to log in to L.P. on M.F I get message I can not log in. I can not add passwords to the vault.
Can you attach a screenshot?
- http://en.wikipedia.org/wiki/Screenshot
- https://support.mozilla.org/kb/how-do-i-create-screenshot-my-problem
Use a compressed image type like PNG or JPG to save the screenshot.
Try to rename the cert8.db file in the Firefox profile folder to cert8.db.old or delete the cert8.db file to remove intermediate certificates that Firefox has stored.
If you have user certificates that you want to keep then export those certificates to a .cer file before removing the cert8.db file.
If that helped to solve the problem then you can remove the renamed cert8.db.old file.
Otherwise you can rename (or copy) the cert8.db.old file to cert8.db to restore the previous intermediate certificates.
Firefox will automatically store intermediate certificates when you visit websites that send such a certificate.
You can use this button to go to the Firefox profile folder:
- Help > Troubleshooting Information > Profile Directory: Open Containing Folder
I deleted the cert8.db file and tried to log into lastpass again, but same info came up. No chanse to reach the site. Should I contavt Last pass instead?
Here is a screenshot, in Swedish though..
Is that part of the page opened in a iframe because that is one know reason for not getting the opportunity to add an exception?
You can check that via the right-click context menu.
Hi cor-el. Yes it is in a frame. If i right click I get the alterntiv menu up, but nothing I can change. I also contacted last pass, who gave me alternative adresses, but nothing works. The strange is that I even had to make an exemption for Google in Firefox the first time I made a serarch.. Last Pass ask me to allow it to be downloaded direct, but i am not allowed to download og make an exemption. I have made an exemption maually in Internet alternativ, I do have three different adresses, like www.lastpass.com, lastpass.com and download.lastpass.com, but still I am denied.
Does this verison of Firefox have a hidden security adjustment? In earlier versions we could adjust the strenghts of security.
Additional info: This morning I wanted to open ebay, https://signin.ebay.com/ws/eBayISAPI.dll?SignIn&UsingSSL=1&pUserId=&co_partnerId=2&siteid=0&ru=http%3A%2F%2Fmy.ebay.com%2Fws%2FeBayISAPI.dll%3FMyeBay%26%26CurrentPage%3DMyeBayFeedback%26ssPageName%3DADME%253AL%253AFR%253AUS%253A1322%26guest%3D1&
and I receive same info, This connection is not safe. Also today when logging in to my bank, with https://, sam message again, but I can continue by clicking "I do understand the risk" and after that download the certificate and save it permanently. But firefox claim that the certificate is unknown. Is ther noone in the development area who can look into this?
As a difference, I am able to press: "I understad the risk" button, but it should not be nescessary. for both above mentioned pages.
Ti ṣàtúnṣe
When you run into these, can you take note of the specific problem described by Firefox? Sometimes webmasters forget to install a full certificate chain or bundle which connects their certificate with the ones in the trusted root certificate list in Firefox or in Windows. But I can't imagine Google or eBay forgot to do this...
This is the info I get, and nothing else.:
This connection is not reliable
You have instructed Firefox to connect
to lastpass.com safely, but it is not possible to confirm that the connection really is safe.
When you normally try to connect in a safe manner
the sites that present reliable identification proving that come to the right place. This site's identity can not be verified.
What should I do? If you usually no problem connecting
to this site, this error to indicate that any attempt Pretending to be the right site and you should not continue.
"TAKE ME OUT OF HERE" button
lastpass.com uses an invalid security certificate.
Certificate is not trusted because the certificate chain to the issuer is missing.
(Errno: sec_error_unknown_issuer)
If you check your certificate authorities list, does Firefox show the one used by LastPass?
orange Firefox button or classic Tools menu > Options > Advanced > Encryption > View Certificates > Authorities
As shown in the attached image, it should be under:
thawte, Inc. > thawte Primary Root CA
Thanks for detailed help! The answer is No. there is no last pass there, I am 100% sure. I opened your attachment and compared it. See enclosed att.
attachment did not follow?
Sorry, I don't see the attachment. Usually you see a little previews right after you open the file.
In the Authorities list, you wouldn't find LastPass, since it is not a trusted issue of certificates, but you should find Thawte. The LastPass certificate was issued under the same root as the one on Thawte's own website:
Getting tired of this now. Not even add a picture works. tried with a *.png and *.jpg but none was attached. Also, This verison of Firefox, ask for certificate from all pages i visit and warn about not valid certificate. As this adress you gave me, https://www.thawte.com/, a permanent certificate must be downloaded and a permanent exemption made.
Is the pages with addons supposed to look like this?? Se attached picture, which surprisingly worked this time :-) And so did thawte......:o
Can I install an earlier version of Firefox ?