Page Info -> Security dialog should show the TLS version/ciphersuite instead of claiming the website does not support encryption for certificate errors
Categories
(Firefox :: Security, enhancement)
Tracking
()
People
(Reporter: sandwichs, Unassigned)
Details
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0
Steps to reproduce:
Please ignore user-agent, I tested this with firefox 80.0.1 built by Fedora.
Visit a https page that will generate SEC_ERROR_REVOKED_CERTIFICATE, SEC_ERROR_OCSP_OLD_RESPONSE or any other other SEC_ERROR_OCSP_*, for example https://revoked.badssl.com/
Actual results:
Cannot view the revoked / bad-OCSP certificate details anywhere
Expected results:
I get to see the details of the revoked certificate and, more importantly, I get to see the details of the OCSP-troubled certificate, so I can extract the OCSP location and try to debug the problem.
Both revoked and OCSP-unavailable errors should offer similar debugging options like the expired cert error, but without allowing the user to override of course.
Additionally, the "Page Info - https://revoked.badssl.com" -> Security -> Technical details dialog, should show the SSL/TLS ciphersuite instead of claiming "The website revoked.badssl.com does not support encryption for the page you are viewing." for these errors.
Thank you for considering this.
|
||
Comment 1•5 years ago
|
||
Bugbug thinks this bug should belong to this component, but please revert this change in case of error.
|
||
Comment 2•5 years ago
|
||
The aim of bug 1486551 is to make this information accessible. I'm going to morph this bug to address the second issue you raised.
Description
•