Closed Bug 1485321 Opened 6 years ago Closed 6 years ago

Symantec CA Distrust process rendered www.lhv.ee inaccessible

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1484006
Milestone:
Firefox 63
Tracking Flags:
Tracking Status
firefox63 --- affected

People

(Reporter: flaki, Unassigned)

References

(
URL
)

Details

The fact that the site (a large Estonian bank's online presence) fails is not surprising, however nothing in the certificate immediately tells the user this is a Symantec root distrust issue (LHV uses a Thawte certificate and a Thawte root). There is also no way to add an exception (Firefox does not offer the button for doing so) or view certificate details (the button to view certificate in the Page Info panel is not working, certificate details are not showing up in the panel). Since this is a large Estonian bank that focuses on online banking I expect a lot more headaches and reports to be coming from here as the distrust process moves to beta.
(The only way I could access the site again is by manually switching off distrust policy enforcement via about:config -> security.pki.distrust_ca_policy set to 1)
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → DUPLICATE
No longer depends on: 1484246
You need to log in before you can comment on or make changes to this bug.