Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Rohkem teavet

Teema arhiveeriti. Please ask a new question if you need help.

How to fix MOZILLA_PKIX_ERROR_MITM_DETECTED when we use SSL Bumping ?

  • 1 vastus
  • 1 on selline probleem
  • 3 views
  • Viimati vastas cor-el

Heryas
Heryas
more options

Hi everyone,

We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers.

Any ideas who can help ?

Hi everyone, We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers. Any ideas who can help ?

All Replies (1)

cor-el
cor-el
  • Top 25 Contributor
  • Moderator
more options

There are related security.pki.mitm prefs available on the about:config page. This pref should tell you the issuer of the certificate.

  • security.pki.mitm_canary_issuer

You can set this pref to true on the about:config page to import root certificate(s) from the Windows certificate store.

  • security.enterprise_roots.enabled = true

See also: