WP site with ssl cert is not safe in Canada. My tech support in USA and India report the site works fine on firefox. Qualys rates the cert as B. How can I fix?
My business only serves Canadian residents. https:finisland.com . Firefox says it is unsafe and not set up properly. Bluehost tech in the USA and in India say it works fine for them. They say the certificate is properly installed. In Canada, the site loads perfectly in google, chrome, safari, MSedge. So the issue cannot be my computers nor my internet provider. It is imperative that it works just as normally in firefox. What is the issue? How can this be corrected so that all my potential clients will never be led to believe the site is not secure or that it could steal their information? Thank you, I am looking forward to getting this resolved.
All Replies (6)
hi, the qualys test site reports "chain issues: incomplete" - the server doesn't offer/implement the proper intermediate certificates and a secure connection will fail in a new firefox profile.
Thank you Phillip. I do appreciate your assistance. Can you please tell me what that means and what I need to do?
Q2: Why would this cause firefox to determine the site was dangerous in Canada and at the very same time display the website in its entirety in the US and India? Isn't it all the same firefox?
you should probably contact the host of your server about this - it should present a full certificate chain that links the intermediary "UbiquiTLS™" certificate to the root cert from "COMODO RSA Certification Authority" which is trusted by the browser by default. the issue isn't dependant on location but if a particular firefox installation has come across a different site that has implemented the intermediary correctly yet (as this will information is then cached in firefox). the problem can be reproduced by anyone visiting the site with a newly created firefox profile for example: Profile Manager - Create, remove or switch Firefox profiles
JasperPark said
Q2: Why would this cause firefox to determine the site was dangerous in Canada and at the very same time display the website in its entirety in the US and India? Isn't it all the same firefox?
If a user visiting your site has already visited another site which uses a Comodo certificate, and that site sent Firefox the intermediate certificate, then Firefox can fill in the gap on your site. So it's not always possible to rely on another Firefox user's experience when it comes to whether Firefox objects to a site's certificate. The Qualys SSL test page is more reliable: https://www.ssllabs.com/ssltest/
Modified
All righty then: Thanks to both Philipp and jscher2000. You've armed me with good information and I'll be able to ask better questions of Bluehost tech. I will post the end results for you here.