User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:126.96.36.199) Gecko/20070914 Firefox/188.8.131.52 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:184.108.40.206) Gecko/20070914 Firefox/220.127.116.11 When visiting https://www.blackhat.com after accepting the untrusted Certificate a Info Box pops up saying: 'Security Error: Domain Name Mismatch You have attempted to establish a connection with "www.blackhat.com". However, the security certificate presented belongs to "www.blackhat.com". [...]' This is quite irritating, because "www.blackhat.com" and "www.blackhat.com" is the same domain name. After examining the certificate I found out that, the Subject Common Name of the certificate is set to: "www.blackhat.com", but the Subject Alt Name is set to "DNS:blackhat.com". As a result when going to "https://blackhat.com" this error box does not pop up. So my assumption is, that when Firefox checks the domain name against the cert supplied values, it uses Subject Alt Name to check, but then displays the common name, which causes this ErrorBox when going to "https://www.blackhat.com". Reproducible: Always Steps to Reproduce: 1. 2. 3.
This looks a lot like bug 369112, which is marked as invalid. (That doesn't make any sense to me, given the nonsense error message that's displayed.)
Status: UNCONFIRMED → RESOLVED
Last Resolved: 11 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 238142
You need to log in before you can comment on or make changes to this bug.