Avatar for Username

Αναζήτηση στην υποστήριξη

Προσοχή στις απάτες! Δεν θα σας ζητήσουμε ποτέ να καλέσετε ή να στείλετε μήνυμα σε κάποιον αριθμό τηλεφώνου ή να μοιραστείτε προσωπικά δεδομένα. Αναφέρετε τυχόν ύποπτη δραστηριότητα μέσω της επιλογής «Αναφορά κατάχρησης».

Μάθετε περισσότερα

Αυτό το νήμα αρχειοθετήθηκε. Παρακαλούμε κάντε νέα ερώτηση αν χρειάζεστε βοήθεια.

Why is FireFox not trusting my wildcard root CA when a site is HSTS enabled?

  • 3 απαντήσεις
  • 2 έχουν αυτό το πρόβλημα
  • 2 προβολές
  • Τελευταία απάντηση από cor-el

jonowebster
jonowebster
more options

The other two major browsers, Google Chrome and Internet Explorer both exempt sites covered by a trust locally installed wildcard root CA's from HSTS checks, however Firefox throws a certificate warning.

There are legitimate reasons to install a wildcard root CA onto users devices, such as for performing HTTPS inspection within a corporate or education environment, however FF no longer allows this.

I can understand the developers are trying to protect against MITM attacks, but this has to be an oversight or bug?

The other two major browsers, Google Chrome and Internet Explorer both exempt sites covered by a trust locally installed wildcard root CA's from HSTS checks, however Firefox throws a certificate warning. There are legitimate reasons to install a wildcard root CA onto users devices, such as for performing HTTPS inspection within a corporate or education environment, however FF no longer allows this. I can understand the developers are trying to protect against MITM attacks, but this has to be an oversight or bug?

Όλες οι απαντήσεις (3)

philipp
philipp
  • Moderator
more options

what error message/error code are you getting?

user293
user293
more options

Firefox uses it's own certificate store, not the system one tht chrome and IE use. Have you tried installing the certificate in Firefox's certificate store?

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options