With this latest update (on 4/10/15) I am unable to access a secured work website due to the TLS. How do I revert back to the previous settings?
I need to revert the security settings back to the way they were BEFORE the update because now I am unable to access my secured work website (that I was on yesterday) to actually do work. When I attempt to go to my log-in page I get the following message: Secure Connection Failed
The connection to corect.ct.gov:10000 was interrupted while the page was loading.
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.
It doesn't even give me the option to allow the site (it is my computer after all, it should be my choice). I NEED TO GET TO THIS WEBSITE.
Alla svar (6)
The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases or may be using a deprecated cipher suite.
You can open the about:config page via the location/address bar and use its search bar to locate this pref:
- security.tls.insecure_fallback_hosts
You can double-click the line to modify the pref and add the domain (corect.ct.gov) to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column.
I'm having the same problem. CORE-CT is our Connecticut State Web site and we can't sign into it from Firefox. It works fine with Explorer.
Sorry cor-el. Suggestions don't work. Putting "about:config" in the address bar only gives you a Yahoo search suggestion. If you then click on the first suggestion it brings you back to a Mozilla support forum. Putting in "securtiy.tis.insecure_fallback_host" will give you the "server not found" message.
I'm asking for Mozilla help since this affects a large population using CORE_CT. Explorer seems the only avenue to get there.
Gary
about:config not "about:config"
Websites are going to have to update to be secure and be used in current versions of web browsers now and soon.
Upgraded to 39.0 and having this issue all over again. The about:config change is still there, but I am still unable to open this page AGAIN. This needs to be fixed immediately.
This is a cut and paste of the error coming up:
Secure Connection Failed
The connection to the server was reset while the page was loading.
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.
The problem is on one or both of these pages?
https://corect.ct.gov/ https://corect.ct.gov/PEPRD/signon.html
Maybe it's because I am not on a VPN, but I cannot load that site in any browser. Firefox shows a padlock for the page, so I'm not sure why it reports an authenticity problem. Maybe it's just that the connection was reset.