Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

certificate exception list in version 61.0.1?

  • 4 个回答
  • 1 人有此问题
  • 1 次查看
  • 最后回复者为 rhp52

rhp52
rhp52
more options

Is there any way, without compromising my security, to add a known website whose hsts cert. has expired to an exception list? I have been in contact with the website owner and the problem is as follows:

He has changed servers since he originally set up the cert. and now he says he can't find anyone who can make it work on the new servers.

This is a well known website and the owner is beyond frustrated that this has occurred. So, I'm not concerned about the site so much as i'm wary of what else i may be exposing myself to if there was a workaround.

Is there any way, without compromising my security, to add a known website whose hsts cert. has expired to an exception list? I have been in contact with the website owner and the problem is as follows: He has changed servers since he originally set up the cert. and now he says he can't find anyone who can make it work on the new servers. This is a well known website and the owner is beyond frustrated that this has occurred. So, I'm not concerned about the site so much as i'm wary of what else i may be exposing myself to if there was a workaround.

所有回复 (4)

Wesley Branton
Wesley Branton
more options

Obviously, you should always be cautious when using websites without a valid certificate.

You can add a certificate exception from the "Your connection is not secure" warning screen. When you add a certificate exception, you will have the option to make it permanent or just temporary. For maximum security, I'd recommend not making it permanently.

If you bypass the warning, the main concern is that your encryption isn't working properly. Encryption is the method used to convert your data from plain text to text that no one can read. This helps prevent people from eavesdropping or tampering with your data. This is incredibly important for websites that have you login to an account.

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

You can try to edit the SiteSecurityServiceState.txt file and remove the line(s) that refer to this domain (website).

You can use the button on the "Help -> Troubleshooting Information" (about:support) page to go to the current Firefox profile folder or use the about:profiles page.

rhp52
rhp52 提问者
more options

Wesley Branton said

Obviously, you should always be cautious when using websites without a valid certificate. You can add a certificate exception from the "Your connection is not secure" warning screen. When you add a certificate exception, you will have the option to make it permanent or just temporary. For maximum security, I'd recommend not making it permanently. If you bypass the warning, the main concern is that your encryption isn't working properly. Encryption is the method used to convert your data from plain text to text that no one can read. This helps prevent people from eavesdropping or tampering with your data. This is incredibly important for websites that have you login to an account.

thx for the reply, but thisoption is not given in FF61.0.1

rhp52
rhp52 提问者
more options

cor-el said

You can try to edit the SiteSecurityServiceState.txt file and remove the line(s) that refer to this domain (website). You can use the button on the "Help -> Troubleshooting Information" (about:support) page to go to the current Firefox profile folder or use the about:profiles page.

thx for the reply I'll try that