port 80 security breach firefox 43.04
Hi All,
I am showing that my local firewall is blocking outgoing communication from my computer to port 80 on a remote computer whose IP address is 72.21.91.29. After doing a network look up it is confirmed this IP address belongs to Verizon
The firewall has blocked Internet access to crl3.digicert.com (72.21.91.29) (HTTP) from your computer [TCP Flags: S]. It is confirmed that it is not an issue with a service on my computer nor is it any malware. After searching the windows registry I have found the culprit.
DigiCert SHA2 Assured ID Code Signing CA
It is a subfolder in the registry under Mozilla Firefox
This port breach of security is bundled into Firefox. I would like an explanation as to why we are being be spied on by Verizon ? Again the reg key. Just do a search for digicert and you will see it in Mozilla folder in registry.
So not only do we have google dictating what a safe web site is for us. We now have Verizon sniffing our ports. I tell you what I am gonna do. I am gonna contact the NOC at Verizons host and speak with their administration,
I would also like an explanation from someone at Mozilla who can tell me why this is happening
Here is the link to the network lookup. http://network-tools.com/default.asp?prog=express&host=72.21.91.29
OrgName: EdgeCast Networks, Inc. OrgId: EDGEC-1 Address: 2850 Ocean Park Blvd. Address: Suite 110 City: Santa Monica StateProv: CA PostalCode: 90405 Country: US RegDate: 2007-03-09 Updated: 2011-11-30 Ref: http://whois.arin.net/rest/org/EDGEC-1
This resolves to Verizon Digital Media. https://www.verizondigitalmedia.com/
All Replies (3)
hello, crl3.digicert.com is a certificate revocation list by the trusted root certificate authority digicert and unrelated to verizon (other than being their hoster).
I already spoke to the NOC at Verizon and they told me different than what you are saying, They told me it has to do with a load balancer that dictates where my packets hop across the internet.
Hi, chiselbeak! :)
I would very be concerned if Firefox was bundled with anything that might facilitate an invasion of privacy. Thankfully, it is not! The traffic you've identified is coming from Windows via Microsoft's application "certificate revocation check." It is not bundled with, called by, or needed for Firefox.
However, the Mozilla Maintenance Service will not be able to anonymously download security and privacy updates in the background if Windows cannot verify the validity of the certificate it uses to secure the connection between your computer and our servers. See What is the Mozilla Maintenance Service? for more information and instructions on disabling this service.
Note that you will still be able to download updates without the Mozilla Maintenance Service. But you'll have to check for updates within Firefox or download them manually to get them.
I hope I've addressed your concern and provided some helpful information. :)