Rechercher dans l’assistance

Évitez les escroqueries à l’assistance. Nous ne vous demanderons jamais d’appeler ou d’envoyer un SMS à un numéro de téléphone ou de partager des informations personnelles. Veuillez signaler toute activité suspecte en utilisant l’option « Signaler un abus ».

En savoir plus

GeoTrust SSL web site and "This Connection is Untrusted"

  • 2 réponses
  • 209 ont ce problème
  • 24 vues
  • Dernière réponse par Hainesy82

more options

My web site works fine in Chrome and IE6/IE7/IE8 etc.

However - in Firefox I see this:-

This Connection is Untrusted You have asked Firefox to connect securely to 1id.com, but we can't confirm that your connection is secure. ... Technical Details The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)

I'm guessing I have to include some extra certs from my web site (apache) so Firefox can detect that my (expensive!) Geotrust SSL CERT is valid.

How would I do this?

Why is Firefox the only browser that's unhappy?

My web site works fine in Chrome and IE6/IE7/IE8 etc. However - in Firefox I see this:- This Connection is Untrusted You have asked Firefox to connect securely to 1id.com, but we can't confirm that your connection is secure. ... Technical Details The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer) I'm guessing I have to include some extra certs from my web site (apache) so Firefox can detect that my (expensive!) Geotrust SSL CERT is valid. How would I do this? Why is Firefox the only browser that's unhappy?

Toutes les réponses (2)

more options

Ha - fixed it - I added this to my apache config

SSLCertificateChainFile /../blah.crt

The really odd thing is - this has worked fine for 5 years, and my new SSL certificate renewal was the same kind, from the same issuer... really WEIRD how it used to work OK last month without that!!!

It's kind of typical of the arrogant Mozilla attitude I've come to expect in my experience. Instead of the 1 firefox tech taking 5 mins to put intermediate CAs into Firefox, like every other browser already does - Mozilla thinks they should make every one of millions of web site operators install 3rd party CA certs on their web sites instead.

Sheesh... reminds me of some years ago when I reported some SSL errors to the Netscape (firefox grandaddy) T-Shirt-for-a-bug competition. Everyone else got a free T-shirt for their bug reports. I got a cease-and-desist demand from their lawyers. Bugs were fine - as long as we weren't reporting anything SSL related it seems.

more options