We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

You have asked Firefox to connect securely to vabenefits.vba.va.gov, but we can't confirm that your connection is secure.

more options

vabenefits.vba.va.gov uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided.

vabenefits.vba.va.gov uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided.

所有回复 (1)

more options

To make a long story short, Firefox checks each web server's certificate against a list of "trusted" signing certificates. If the webserver's certificate was NOT signed by one of those, Firefox expects the webserver to send the signing certificate. And if necessary its signing certificate, forming a chain of trust all the way up to a trusted root certificate.

That server is sending only its own certificate. Screen shot attached showing what I mean.

So what should you do? Firefox does allow you to make exceptions and trust certificates even when you can't be sure that they are legit because there isn't a chain of trust. You can find that at the bottom of the error page under "I understand the risks".

However, it would be better/safer if we knew for sure that this server hasn't been hijacked before making an exception. Because nowadays, stuff happens to government websites.