Hi Steve:
Thanks for your prompt response! I later discovered several other sites with the same issue.
After some minor investigation, I discovered the following:
- I was reading about SSL certificates, notably for Mozilla. The one interesting suggestion, was that HTTP Strict Transport Security (HSTS) initially uses http, and then stores the setting in the Mozilla user profile for one year. The system is supposed to work to prevent spoofing, and allow only connections to the original source. There were some suggestions about changing about:config to address problems and duration, but that didn't work.
- I then thought if I made a new profile, that might circumvent the HSTS, and it worked. Instead of receiving the HSTS message preventing me from connecting, I got the page with:
This Connection is Untrusted
I Understand the Risks
Add Exception...
- From there, I experimented with cert*.db, but that was not successful. The actual files which determined the successful outcome were:
cert_override.txt
SiteSecurityServiceState.tx
- The two files can be deleted, and the browser will work on previously blocked sites after "Add Exception...", as the files are regenerated. Other successful options were to delete all the lines with the affected sites in the above two files, or to replace the original lines with new ones from newly made files. (using a new profile or deleting the two *.txt files). For example, OSM had 10 lines in SiteSecurityServiceState.txt which were replaced with one line.
I am pleased that wikipedia now functions, and other sites load. Remaining issues are that OSM is now partially crippled, and
overpass-turbo.eu/ is non-functional.
thanks,
Baden