Firefox will not open any search query with any search engine. All are UNTRUSTED.
I run OS MS Windows 7 Premium with Kaspersky as my security software.
Have checked and checked again. It seems to be Firefox's security settings, rather than Kaspersky's causing the problem. Just in case it was Kaspersky I have added Google as an exception, but the problem still persists. I have also added Google as a Certificate exception in Firefox config. and still the problem persists.
The Problem:
I simply cannot open any web search page in Firefox through any search engine because Firefox says all are "untrusted", however I can open these pages in other web browsers.
Any search produces this:
Well the wretched loader won't load the image. So much for that, but basically the notification is that "THIS CONNECTION IS UNTRUSTED" and the issuer Certificate is unknown. The code error says "issuer unknown".
I am not even getting the option to ignore the warning, so I have no option but to close the page every time. A complete nightmare, making Firefox unusable. Not sure whether caused by a recent Google update or Firefox update.
I have checked and checked again my Firefox security settings and for the life of me, cannot understand why this has suddenly started happening out of the blue.
Please note:
1. I have Google set as my default search engine and Firefox set as my home page.
2. I have Firefox set to update automatically, but have had to remove it as my default browser - temporary I hope.
3. I have only ever used the Firefox default theme.
4. I have already re-set/refreshed the browser using the refresh/reset link in about:support/Troubleshoot Information. That has not helped.
5. I have Google as a trusted website, (as an exception), in both Firefox and Kaspersky, but that does not seem to help.
5. Have gone to help and clicked on about:firefox and get this report:
Well here we go again - uploader still spinning madly and never delivering - 10 mins later - nothing uploaded. The version check on my Firefox states in a dialogue box: "FIREFOX 40.0.2 Firefox is up to date".
6. Yet on another page searching for my problem I see this:
Far out! Why doesn't this freaking uploader work??? I have to type everything, apart from being tedious, this gives you no verification. One line of text after another says:
"Congrats! You're using the latest version of Firefox" "Looks like you are using an older version of Firefox. Update on Google Play" "Contgrats! You're using the latest version of Firefox"
Then further down:
In a button box: "Refresh Firefox" which I did as per description.
Immediately below that it says:
"Looks like you are using an older version of Firefox" ... and below that in a live link:
"update to stay fast and safe" ...... Is this for real?? [All of this would be more authoritative in a screen shot.]
7. In about:support/Troubleshooting Information I have deleted my profile page and restarted Firefox as instructed.
8. Made no difference. Deleted the file again and closed everything down and re-booted system. That didn't work, either.
9. All of the text I am reading in the Firefox 'help' looks like a cached page. I cannot bring up any 'real' web pages in the Firefox browser in Firefox support at all, for some reason.
I love Firefox as a browser, but hate its constant glitches. For more than 10 years, I hate to admit, I used I.E. with never an issue. Then I switched to Google Chrome for another 5 years, also with never an issue - apart from the data mining and spying which I loathe and is why I finally changed to Firefox. Firefox is the informed choice ... but it is also a bloody head-banging choice too and that just might be enough to make me give up on it.
Solution choisie
https connections are there to ensure you're traffic is encrypted and you're talking to the webserver you're expecting to. what happens on a technical level with kaspersky there is basically a man-in-the-middle attack, which firefox is reporting to you as intended - your web traffic doesn't go to google when you type in www.google.com, but to kaspersky. there are ways around that for av-vendors (like injecting their root certificate into the browser (it might go missing again after a refresh of firefox), but if there's a problem with this you'd have to contact kaspersky's support as they will be responsible for implementing the product they offer properly.
in any case, enabling features like https-scanning in your av-software can even leave you more vulnerable, since browser vendors have far greater expertise in how to use and implement encryption properly: http://www.scmagazineuk.com/updated-kaspersky-leaves-users-open-to-freak-attack/article/411470/
Lire cette réponse dans son contexte 👍 1Toutes les réponses (4)
hello, you should never add a certificate exception for a major site like google - rather search for the root cause of the problem. first go into the kaspersky settings > additional > network settings and disable the scanning of encrypted connections there. alternatively you could also try to import the kaspersky certificate into firefox like described by another user at https://support.mozilla.org/en-US/questions/1026631#answer-650916.
Hi Philipp,
Wow! So simple and so dead bang on right were you! Great stuff! You obviously know your Kaspersky. I tried first of all only installing the Kaspersky Lab Certificate and yet, even though none of the three search engines - Google, Yahoo & Bing - are listed as sites which encryption scanning will affect, even with the Lab Certificate installed, it seems it nevertheless does make them inaccessible, so Kaspersky needs to update its list. Consequently, I followed your other advice and disabled the encryption scanning by Kaspersky.
BUT .... and perhaps this is a very big BUT for Firefox developers ... Why should I disable my security ware's capacity to scan encrypted website connections just to accommodate Firefox? Or put another way, why should I reduce my security just to run Firefox, which claims to be more secure than I.E. or Google Chrome. Some paradoxical irony there surely?
Solution choisie
https connections are there to ensure you're traffic is encrypted and you're talking to the webserver you're expecting to. what happens on a technical level with kaspersky there is basically a man-in-the-middle attack, which firefox is reporting to you as intended - your web traffic doesn't go to google when you type in www.google.com, but to kaspersky. there are ways around that for av-vendors (like injecting their root certificate into the browser (it might go missing again after a refresh of firefox), but if there's a problem with this you'd have to contact kaspersky's support as they will be responsible for implementing the product they offer properly.
in any case, enabling features like https-scanning in your av-software can even leave you more vulnerable, since browser vendors have far greater expertise in how to use and implement encryption properly: http://www.scmagazineuk.com/updated-kaspersky-leaves-users-open-to-freak-attack/article/411470/
Thank you and appreciate the info - some whizzed over my head - but very informative. It seems it is a double-edged sword, at least until the AV developers can do it better, for as the UK Security Advisory Group said:
"I can see why AV vendors would want to offer to intercept encrypted traffic - in the name of ‘We will ensure that you are not attacked or that you don't fall victim to a fake website'.