Closed Bug 1414766 Opened 8 years ago Closed 6 years ago

[RFE] certificate 'Permanently save exception' - again

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Version:
54 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: mkorbel, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:54.0) Gecko/20100101 Firefox/54.0 Build ID: 20170616112219 Steps to reproduce: When we try to open a untrust web page, we get warning with option "Permanently store this exception", where is the checkbox in default checked. I read all bugs about this (bz471954, bz1380920, bz399696, bz536197, ...) and I see it is not acceptable. I have compromise solutions: Way 1: The user should have chance to change this default value in about:config. Way 2: if the user could set domain filter for certificates, where the firefox will be more benevolent. For example. If we set *.automatizaton.example.com in this filter, the firefox will automatically add untrust certificate from this subdomain as temporary with some popup message about that. Reason: I'm QA (I'm sure not alone) and I have to check our automatization. I have to open tens servers every day with untrust certificates. sometimes I forgot to uncheck this checkbox and next day I get error and I can open this server (the fqdn is the same, but automatization reinstalled the application and regenerated certificate). I have to manually find this old certificate and delete it. It's really annoying. I see, the second proposal is more complicated but it is it is more selective (secure). Otherwise please apply the first proposal at least.
Component: Untriaged → Security

Should be better now.

Status: UNCONFIRMED → RESOLVED
Closed: 6 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.