Closed Bug 1355862 Opened 7 years ago Closed 7 years ago

Unable to load https://www.dgbas.gov.tw/point.asp?index=4

Categories

(Core :: Networking: HTTP, defect)

Product:
Core
Component:
Networking: HTTP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 399324

People

(Reporter: bmo, Unassigned)

Details

It shows below message:

An error occurred during a connection to www.dgbas.gov.tw. Peer’s certificate has an invalid signature. Error code: SEC_ERROR_BAD_SIGNATURE

Chrome, IE, Safari all work fine.
Edge can just partially render the page.

Not sure if it's because Firefox has a strict cert check.
server is missing intermediates

https://www.ssllabs.com/ssltest/analyze.html?d=www.dgbas.gov.tw&s=117.56.166.92&latest
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
It seems a webcompat issue to me though we are considering it a server side issue.
I also found that nightly 55 can load the page, aurora 54 complains a bad algo, beta 54 & release 55 both fail to load. No consistent result within different versions.
Is there any other solution to fix it besides asking a server side fix?
I suspect the inconsistency is that we use cached intermediates to evaluate the cert chain - so whether or not it passes depends on the state of the cache.

The bug this was marked as a duplicate of is probably the one to track regarding any missing-intermediate fetching firefox might decide to implement.
You need to log in before you can comment on or make changes to this bug.