Avatar for Username

Eheka Pytyvõha

Emboyke pytyvõha apovai. Ndorojeruremo’ãi ehenói térã eñe’ẽmondóvo pumbyrýpe ha emoherakuãvo marandu nemba’etéva. Emombe’u tembiapo imarãkuaáva ko “Marandu iñañáva” rupive.

Kuaave

Ko téma oñeñongatúma. Ejapo porandu pyahu eikotevẽramo pytyvõ.

How to fix MOZILLA_PKIX_ERROR_MITM_DETECTED when we use SSL Bumping ?

  • 1 Mbohovái
  • 1 oguereko ko apañuái
  • 15 Hecha
  • Mbohovái ipaháva cor-el

Heryas
Heryas
more options

Hi everyone,

We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers.

Any ideas who can help ?

Hi everyone, We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers. Any ideas who can help ?

Opaite Mbohovái (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

There are related security.pki.mitm prefs available on the about:config page. This pref should tell you the issuer of the certificate.

  • security.pki.mitm_canary_issuer

You can set this pref to true on the about:config page to import root certificate(s) from the Windows certificate store.

  • security.enterprise_roots.enabled = true

See also: