Firefox browser (88.0.1) - Warning: Potential Security Risk Ahead
When receiving the following messages when accessing a specific URL.
Warning: Potential Security Risk Ahead Firefox detected a potential security threat and did not continue to xyz. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.
Then clicking on the Advanced... button at the bottom of the popup window.
And then clicking on the Accept the Risk and Continue button.
My question is does Firefox make any changes to Internet Options or anywhere else, including within Firefox to change configurations of any type when the Accept the Risk and Continue button is clicked on?
Thank you!
Isisombululo esikhethiwe
When you save an exception for a certificate Firefox can't verify, Firefox will connect but show a red slash across the lock icon in the address bar as a reminder that you might be connecting to a fake site or "man in the middle."
We recommend investigating any secure connection errors for sites where you would need to log in or access/view/upload sensitive information to avoid possible identity theft or loss of control of your account on that site.
Funda le mpendulo ngokuhambisana nalesi sihloko 👍 1All Replies (8)
Hello,
I believe that Firefox only saves the website as visited and to ignore the Google Safe Browsing report. If you would like to return the site to the original state, you can tell Firefox to forget about the website.
Please provide a public link (no password) that we can check out. No Personal Information Please !
Is this a secure connection error page, or the red phishing/malware warning page?
If you make an exception on the secure connection error page, it may be stored permanently. If you want to review previously saved exceptions, you can go to the Options/Settings page:
- Windows: "3-bar" menu button (or Tools menu) > Settings (previously "Options")
- Mac: "3-bar" menu button (or Firefox menu) > Preferences
- Linux: "3-bar" menu button (or Edit menu) > Preferences
- Any system: type or paste about:preferences into the address bar and press Enter/Return to load it
In the search box at the top of the page, type cert and Firefox should filter to the Certificates section of the page. Click the "View Certificates" button. Change to the "Servers" tab. This where you will find your list of exceptions and can remove the ones that you didn't intend or don't want to be permanent.
It is a secure connection error page.
Isisombululo Esikhethiwe
When you save an exception for a certificate Firefox can't verify, Firefox will connect but show a red slash across the lock icon in the address bar as a reminder that you might be connecting to a fake site or "man in the middle."
We recommend investigating any secure connection errors for sites where you would need to log in or access/view/upload sensitive information to avoid possible identity theft or loss of control of your account on that site.
The issue was caused by one of our own internal devices, but because of the way we were able to get around this in Firefox, there is concern that once the issue was taken care of causing the problem there maybe a need within Firefox to change back what was allowed. I believe what you provided earlier is the direction that needs to occur.
Sounds good.
There also is the nuclear option of deleting the cert9.db file from the profile folder to flush all accumulated certs not included in the factory install, but that may be more work than it's worth.
You also can force all exceptions to temporary (session-only, I think) by toggling the security.certerrors.permanentOverride preference to false but that would only be going forward and not retrospective.
jscher2000,
Thank you for your assistance in this matter. The information you provided has helped me immensely!
Sincerely,
TRC