Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

What to do if a genuine looking site doesn't have valid certificate

13 views
Skip to first unread message

V S Rawat

unread,
Aug 6, 2008, 4:24:07 AM8/6/08
to
please visit:
https://svn.castleproject.org/svn/castlecontrib/activewriter/

If they don't correct the problem, you are likely to get the message:
--
Secure Connection Failed

svn.castleproject.org uses an invalid security certificate.

The certificate is not trusted because it is self signed.

(Error code: sec_error_ca_cert_invalid)

* This could be a problem with the server's configuration, or it
could be someone trying to impersonate the server.

* If you have connected to this server successfully in the past,
the error may be temporary, and you can try again later.

Or you can add an exception…
--

clicking on adding an exception tells:
--
You should not add an exception if you are using an internet connection
that you do not trust completely or if you are not used to seeing a
warning for this server.

Get me out of here
Add exception
--

clicking on Add exception and then clicking on get certificate in the
window that opens tells:
--
This certificate is not trusted by a valid authority.

Confirm Security Exception
--

So on.

What to do in such cases? The site otherwise looks perfectly genuine.

Are there any telltale signs of a site being harmful, other than it
being just an oversight on part of them to have a valid certificate.

A few weeks ago, I got similar message for gmail.com site. I didn't even
bother to think and added exception. It is working fine.

--
V

»Q«

unread,
Aug 6, 2008, 10:01:49 AM8/6/08
to
On Wed, 06 Aug 2008 13:54:07 +0530
V S Rawat <vsr...@gmail.com> wrote:

> please visit:
> https://svn.castleproject.org/svn/castlecontrib/activewriter/
>
> If they don't correct the problem, you are likely to get the message:
> --
> Secure Connection Failed

They've signed their own certificate, and you'd need to contact them if
you want them to correct the problem. Meanwhile,

1) Click that "or you can add an exception" link
2) Click the "add exception" button
3) Click the "get certificate" button
4) Click "view" if you want to see certificate details

Note that none of those three steps will actually add the security
exception.

5) You can either temporarily or permanently grant an
exception for the site's certificate

David Pyles

unread,
Aug 6, 2008, 10:29:16 AM8/6/08
to
With Firefox 3.0.1 I no longer get a security warning with options to
"add an exception" etc. I just get a warning with an OK button (see
http://www.acousticmusic.com/alert.jpg for a screen shot). Maybe there
is an addon responsible for this, but, for the life of me, I can't
figure out which one. Any clues?
Dave Pyles

V S Rawat

unread,
Aug 6, 2008, 10:43:57 AM8/6/08
to

k. I am still on 3.0 (afraid of my extensions going bust hence not
updating to newest) so I wouldn't get that feature.

Yeah, ff gives options to add exception, but it gave so many hard-worded
warnings that made me feel that I am going to jump in a well. The alert
you said is much better worded.

(about the pic: what a color, what a font size. You must have eyesight
of an Eagle. :-) It takes me half a minute to adjust to seeing computer
screen after I read an sms on my cell.)

--
V

David Pyles

unread,
Aug 6, 2008, 11:27:54 AM8/6/08
to
Thi screen shot is white text on a black background. I don't know what
the font size is, I have never checked in the theme, but I can read it
well enough.
Dave Pyles

»Q«

unread,
Aug 6, 2008, 11:19:00 AM8/6/08
to

It looks like somehow your value of browser.xul.error_pages.enabled has
somehow gotten set to false. Use about:config to set it to true and
see what happens.

If still no joy, try using the default theme. And if still no, post the
list of your extensions.


Matt Nordhoff

unread,
Aug 6, 2008, 1:11:10 PM8/6/08
to
V S Rawat wrote:
> A few weeks ago, I got similar message for gmail.com site. I didn't even
> bother to think and added exception. It is working fine.

IIRC, some of Google's SSL certificates expired, but they fixed them
quickly.
--

V S Rawat

unread,
Aug 6, 2008, 12:48:12 PM8/6/08
to

No, browser.xul.error_pages.enabled is already true.

My extensions list is:
Application: Firefox 3.0 (2008052906)
Operating System: WINNT (x86-msvc)

- Aardvark 2.96
- Adblock Filterset.G Updater 0.3.1.3
- Adblock Plus 0.7.5.5
- Adblock Plus Filter Uploader 1.5+
- Adblock Plus: Element Hiding Helper 1.0.5
- AVG Safe Search 8.0
- CacheViewer 0.4.7.1
- ChatZilla 0.9.83
- CookieSwap 0.5.163
- CSS Validator 3.0.0
- CSSViewer 1.0.3
- Delicious Bookmarks 2.0.91
(Disabled)
- Digger 3.0
- Document Map 0.5
- DOM Inspector 2.0.0
- Download Statusbar 0.9.6.3
- DownThemAll! 1.0.3
- dragdropupload 1.6.8
- EditCSS 0.3.7
- Extension List Dumper 1.14.1
- Firebug 1.05
- FireFTP 1.0.1
- Flashblock 1.5.6
- FlashGot 1.0.4.5
- Font Finder 0.5c
- Greasemonkey 0.8.20080609.0
- Image Zoom 0.3.1
- InspectorWidget 2.11.20080214
- InspectThis 0.9.1
- Java Console 6.0.06
- JavaScript Debugger 0.9.87.4
- JustBlogIt 0.3.1
- Linky 2.7.2.6
- Nightly Tester Tools 2.0.2
- NoScript 1.7.8
- Padma 0.4.13
- PDF Download 2.0.0.0
- Save Complete 0.9b10
- Screen grab! 0.95
- Show Anchors 2.1
- Snap Links 0.0.4 / Modded
- Tab Splitter 0.7
(Disabled)
- Tab To Window 1.2.8
- Table2Clipboard 0.1.1
- Unicode Input Tool/Converter 2.1.3
- Update Scanner 2.2.3
- User Agent Switcher 0.6.11
- Web Developer 1.1.6
- Web Marker 0.1

Thanks.
--
V

David Pyles

unread,
Aug 6, 2008, 1:45:09 PM8/6/08
to
That fixed it. Now I get the options. Thanks!!
Dave Pyles

»Q«

unread,
Aug 6, 2008, 3:07:14 PM8/6/08
to
On Wed, 06 Aug 2008 22:18:12 +0530
V S Rawat <vsr...@gmail.com> wrote:

> On 8/6/2008 8:49 PM India Time, _»Q«_ wrote:
>
> > On Wed, 06 Aug 2008 10:29:16 -0400
> > David Pyles <non...@user.invalid> wrote:
> >
> >> With Firefox 3.0.1 I no longer get a security warning with options
> >> to "add an exception" etc. I just get a warning with an OK button
> >> (see http://www.acousticmusic.com/alert.jpg for a screen shot).
> >> Maybe there is an addon responsible for this, but, for the life of
> >> me, I can't figure out which one. Any clues?
> >
> > It looks like somehow your value of browser.xul.error_pages.enabled
> > has somehow gotten set to false. Use about:config to set it to
> > true and see what happens.
> >
> > If still no joy, try using the default theme. And if still no,
> > post the list of your extensions.
>
> No, browser.xul.error_pages.enabled is already true.

That solution was specific to David, whose message I was replying to.

V S, you've already posted that you /do/ get the option to make a
security exception, so there's no need to troubleshoot this.

»Q«

unread,
Aug 6, 2008, 3:18:24 PM8/6/08
to
On Wed, 06 Aug 2008 13:45:09 -0400
David Pyles <non...@user.invalid> wrote:

I'm glad it helped. :)

In earlier versions of Firefox, clicking the "Ok" button in your
screenshot would have temporarily added and exception for the site.
Since that doesn't work in Fx 3, I guess they should get rid of the
option to turn off the xul error pages.

FWIW, there's an interesting blog post yesterday about why Fx 3
has such elaborate UI about self-signed certificates,
<http://blog.johnath.com/2008/08/05/ssl-question-corner/>.

0 new messages