搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Firefox browser (88.0.1) - Warning: Potential Security Risk Ahead

  • 8 个回答
  • 1 人有此问题
  • 1 次查看
  • 最后回复者为 TRC

more options

When receiving the following messages when accessing a specific URL.

Warning: Potential Security Risk Ahead Firefox detected a potential security threat and did not continue to xyz. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.

Then clicking on the Advanced... button at the bottom of the popup window.

And then clicking on the Accept the Risk and Continue button.

My question is does Firefox make any changes to Internet Options or anywhere else, including within Firefox to change configurations of any type when the Accept the Risk and Continue button is clicked on?

Thank you!

When receiving the following messages when accessing a specific URL. Warning: Potential Security Risk Ahead Firefox detected a potential security threat and did not continue to xyz. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details. Then clicking on the Advanced... button at the bottom of the popup window. And then clicking on the Accept the Risk and Continue button. My question is does Firefox make any changes to Internet Options or anywhere else, including within Firefox to change configurations of any type when the Accept the Risk and Continue button is clicked on? Thank you!

被采纳的解决方案

When you save an exception for a certificate Firefox can't verify, Firefox will connect but show a red slash across the lock icon in the address bar as a reminder that you might be connecting to a fake site or "man in the middle."

We recommend investigating any secure connection errors for sites where you would need to log in or access/view/upload sensitive information to avoid possible identity theft or loss of control of your account on that site.

定位到答案原位置 👍 1

所有回复 (8)

more options

Hello,

I believe that Firefox only saves the website as visited and to ignore the Google Safe Browsing report. If you would like to return the site to the original state, you can tell Firefox to forget about the website.

more options

Please provide a public link (no password) that we can check out. No Personal Information Please !

more options

Is this a secure connection error page, or the red phishing/malware warning page?

If you make an exception on the secure connection error page, it may be stored permanently. If you want to review previously saved exceptions, you can go to the Options/Settings page:

  • Windows: "3-bar" menu button (or Tools menu) > Settings (previously "Options")
  • Mac: "3-bar" menu button (or Firefox menu) > Preferences
  • Linux: "3-bar" menu button (or Edit menu) > Preferences
  • Any system: type or paste about:preferences into the address bar and press Enter/Return to load it

In the search box at the top of the page, type cert and Firefox should filter to the Certificates section of the page. Click the "View Certificates" button. Change to the "Servers" tab. This where you will find your list of exceptions and can remove the ones that you didn't intend or don't want to be permanent.

more options

It is a secure connection error page.

more options

选择的解决方案

When you save an exception for a certificate Firefox can't verify, Firefox will connect but show a red slash across the lock icon in the address bar as a reminder that you might be connecting to a fake site or "man in the middle."

We recommend investigating any secure connection errors for sites where you would need to log in or access/view/upload sensitive information to avoid possible identity theft or loss of control of your account on that site.

more options

The issue was caused by one of our own internal devices, but because of the way we were able to get around this in Firefox, there is concern that once the issue was taken care of causing the problem there maybe a need within Firefox to change back what was allowed. I believe what you provided earlier is the direction that needs to occur.

more options

Sounds good.

There also is the nuclear option of deleting the cert9.db file from the profile folder to flush all accumulated certs not included in the factory install, but that may be more work than it's worth.

You also can force all exceptions to temporary (session-only, I think) by toggling the security.certerrors.permanentOverride preference to false but that would only be going forward and not retrospective.

more options

jscher2000,

Thank you for your assistance in this matter. The information you provided has helped me immensely!

Sincerely,

TRC