Avatar for Username

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

이 쓰레드는 보존되었습니다. 만약 도움이 필요하시면 새로운 질문을 올려주세요.

CSP rule depends on browser

Scott
Scott
more options

I need some advice on what to tell mail.com support.

I can log into my mail webmail account mail.com, but when clicking to access my inbox to view my mail, this message appears:

"Blocked by Content Security Policy

This page has a content security policy that prevents it from being loaded in this way.

Firefox prevented this page from loading in this way because the page has a content security policy that disallows it."

Am I correct in assuming that the site in question is responsible for setting their own CSP, so they seem to have gotten something mixed up?

I have tested with all add on disabled as well. I found that the issue happens on Firefox 25.0.1, released 2014, (I cannot to due to add on compatibility) but does not happen on latest browser version so I am puzzled how can a Content Security Policy (CSP) rule be browser VERSION dependent?

Their support email just feeds me the "upgrade your browser" but is this not a bad CSP rule they can fix?

If mail.com will not help me can I disable CSP just for this site (not globally) in the browser - is there an add on that I can use to work around there unhelpful email support?

I need some advice on what to tell mail.com support. I can log into my mail webmail account mail.com, but when clicking to access my inbox to view my mail, this message appears: "Blocked by Content Security Policy This page has a content security policy that prevents it from being loaded in this way. Firefox prevented this page from loading in this way because the page has a content security policy that disallows it." Am I correct in assuming that the site in question is responsible for setting their own CSP, so they seem to have gotten something mixed up? I have tested with all add on disabled as well. I found that the issue happens on Firefox 25.0.1, released 2014, (I cannot to due to add on compatibility) but does not happen on latest browser version so I am puzzled how can a Content Security Policy (CSP) rule be browser VERSION dependent? Their support email just feeds me the "upgrade your browser" but is this not a bad CSP rule they can fix? If mail.com will not help me can I disable CSP just for this site (not globally) in the browser - is there an add on that I can use to work around there unhelpful email support?

글쓴이 Scott 수정일시

모든 댓글 (3)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Start Firefox in Safe Mode to check if one of the extensions (Firefox menu button/Tools > Add-ons > Extensions) or if hardware acceleration is causing the problem.

  • Switch to the DEFAULT theme: Firefox menu button/Tools > Add-ons > Appearance
  • Do NOT click the Reset button on the Safe Mode start window

Boot the computer in Windows Safe Mode with network support (press F8 on the boot screen) to see if that helps.

글쓴이 cor-el 수정일시

Scott
Scott 질문자
more options

Skip said

.. I have tested with all add on disabled as well. ..

I have tested in safe mode (holding shift key down when Firefox starts). It made no difference. Using the OS in safe mode made no difference.

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 25 Contributor
more options

Skip said

I found that the issue happens on Firefox 25.0.1, released 2014, (I cannot to due to add on compatibility) but does not happen on latest browser version so I am puzzled how can a Content Security Policy (CSP) rule be browser VERSION dependent?

It's certainly possible there was a bug in the implementation of CSP in that version which was fixed later.

What kind of add-on doesn't work in Firefox 26 and later? (It's a security risk to use such an out-of-date version of Firefox.)