搜尋 Mozilla 技術支援網站

防止技術支援詐騙。我們絕對不會要求您撥打電話或發送簡訊,或是提供個人資訊。請用「回報濫用」功能回報可疑的行為。

了解更多

Connection untrusted

  • 9 回覆
  • 17 有這個問題
  • 2 次檢視
  • 最近回覆由 briarcraft

more options

Trying to visit a website that is HTTPS and it says it is untrusted which is fine because I know it is a trusted site. Well the option to "I understand the risks" is not there and I tried to add an exception manually and it does not work. Seems like this issue has stemmed back to 2012-2013 as well.

Trying to visit a website that is HTTPS and it says it is untrusted which is fine because I know it is a trusted site. Well the option to "I understand the risks" is not there and I tried to add an exception manually and it does not work. Seems like this issue has stemmed back to 2012-2013 as well.

由 GigabitPony 於 修改

被選擇的解決方法

the site uses a certificate by cacert which isn't in the default firefox trust store - you could address that by manually installing the Class 1 PKI Key Root Certificate (PEM Format) from http://www.cacert.org/index.php?id=3 and trusting it to identify websites.

in later versions of firefox it will fail again, since the site uses a weak encryption algorithm, which should probably be reported directly to the site: https://www.ssllabs.com/ssltest/analyze.html?d=publicbnc.canternet.org&hideResults=on

從原來的回覆中察看解決方案 👍 1

所有回覆 (9)

more options

hello, first please make sure that the date, time & timezone are set correctly on your system. if this doesn't solve the issue (or it is already set properly), a possible solution depends on different factors:

  • what is the error code shown under technical details on the error page?

in case the error code equals sec_error_unknown_issuer, please attempt to add an exception on the bottom of the error page & inspect the certificate (see the screenshot attached for instructions):

  • which issuer information does the certificate contain?

thank you!

"This Connection is Untrusted" error message appears - What to do

more options

(Error code: sec_error_unknown_issuer)

I already tried to add the issuer as an exception and it did not work.

But you see your screenshot? See how it says Add excpetion and I understand the risks? The webpage in question DOES NOT show that at all.

EDIT: Found the edit button, was hiding off screen.

由 GigabitPony 於 修改

more options

I can manually add the exception but it does nothing to solve the issue.

由 GigabitPony 於 修改

more options

please don't add an exception for real - the important part is to inspect the cert to see who has issued it, since this will in many cases lead you to the source of the problem. can you find out who is the issuer of the certificate like shown in the screenshot before? if it only happens on a single site, can you also provide its address?

thanks

more options

If it's okay to post the address of the site here, a volunteer could test to see whether we get the same result you do.

more options

Yeah I know who issued it. website is publicbnc.canternet.org It used to work fine with FF. The site is just so I can log into the znc control panel and edit my settings for the bouncer.

由 GigabitPony 於 修改

more options

選擇的解決方法

the site uses a certificate by cacert which isn't in the default firefox trust store - you could address that by manually installing the Class 1 PKI Key Root Certificate (PEM Format) from http://www.cacert.org/index.php?id=3 and trusting it to identify websites.

in later versions of firefox it will fail again, since the site uses a weak encryption algorithm, which should probably be reported directly to the site: https://www.ssllabs.com/ssltest/analyze.html?d=publicbnc.canternet.org&hideResults=on

more options

Alright I let them know. Testing know to make sure the issue is resolved, which it is. Thank you for the help and info.

more options

If you use KASPERSKY, this is the solution they emailed to me when I encountered this problem. It worked wonderfully.

Here are the steps on what you need to do:


To Show hidden files, folders and drives:

Go to the Start Menu Open up My Documents folder On your keyboard, press and hold 'Alt' key then press 'T' to open the Tools Menu. On the list, please click on 'Folder Options' Go to 'View' tab. Under Advanced Settings, please select or choose 'Show hidden files, folders and drives'. Click on 'Apply' then 'Ok'. Then close the My Documents window.


Deleting and Importing Certificate:

Open up Firefox, click the 'Open Menu' icon or the three horizontal lines. Go to Options Go to the Advanced tab in the top right Click on 'Certificates' tab Click on 'View Certificates' button Under Authorities you will find one or more "KasperskyAnti-VirusPersonalRootCertificate" Select the certificate then delete the file(s).

Select the Import button. Browse to C:\ProgramData\Kaspersky Lab\AVP15.0.1\Data\Cert\ select the (fake)Kaspersky Anti-Virus Personal Root Certificate, and press open. When importing the certificate, there are three options, select the option for "Trust this CA to identify websites" then press OK on all the windows to save the settings.


Please close the Firefox window and reopen the program then try to access sites again. If the steps stated above solved the issue, follow the steps on how to 'Show hidden files, folders and drives' and please select/choose ' Do not Show hidden files, folders and drives' to restore the default setting.