Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

Can't add exception to bypass SEC_ERROR_UNKNOWN_ISSUER

  • 5 个回答
  • 11 人有此问题
  • 1 次查看
  • 最后回复者为 alxga

alxga
alxga
more options

Hello When I use public WIFI I need to accept its rules. To do that I'm used to open my home page (https://www.google.com) and then get redirected to the sign in page for the WIFI. However, now when I do that Firefox won't accept the redirected URL saying that "The owner of www.google.com has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website". Usually it was possible to add an exception and bypass the error. Now it's simply not available if I click on "Advanced" button. I want to be able to force Firefox to accept self-signed certificates.

Hello When I use public WIFI I need to accept its rules. To do that I'm used to open my home page (https://www.google.com) and then get redirected to the sign in page for the WIFI. However, now when I do that Firefox won't accept the redirected URL saying that "The owner of www.google.com has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website". Usually it was possible to add an exception and bypass the error. Now it's simply not available if I click on "Advanced" button. I want to be able to force Firefox to accept self-signed certificates.

被采纳的解决方案

browsers usually won't allow any exceptions/manual overrides for hsts domains and untrusted certs, as it is assumed that somebody is trying impersonate the site in this situation - hsts should protect against this scenario...

定位到答案原位置 👍 0

所有回复 (5)

alxga
alxga 提问者
more options

PS. Clearly, Firefox won't be able check the certificate because it can't reach the issuer's servers before the WIFI rules have been accepted.

Of course, I can select a different URL for which Firefox doesn't need SSL, but it is very annoying and inconvenient. I'm thinking of downgrading.

由alxga于修改

philipp
philipp
  • Moderator
more options

hello, websites can specify that no override should be possible - google.com does this as well (https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security) - in this case it would be easier to start with a normal http site to accept the wifi's terms.

alxga
alxga 提问者
more options

philipp said

hello, websites can specify that no override should be possible - google.com does this as well (https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security) - in this case it would be easier to start with a normal http site to accept the wifi's terms.

Yes, I understand that Google requires Firefox to connect via HTTPS. But why won't it accept a self-signed certificate? I need to override this.

philipp
philipp
  • Moderator
more options

选择的解决方案

browsers usually won't allow any exceptions/manual overrides for hsts domains and untrusted certs, as it is assumed that somebody is trying impersonate the site in this situation - hsts should protect against this scenario...

alxga
alxga 提问者
more options

Okay, I marked as Solved. I can't troubleshoot it now because I won't be redirected to the sign-in page for awhile even if I disconnect and reconnect. It will act as if I accepted the terms already. I'll try to google a better solution (hopefully, importing the certificate or disable HSTS completely) in a few days.

由alxga于修改