Closed Bug 425493 Opened 18 years ago Closed 18 years ago

Inaccurately throws security warning about web site

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Version:
1.8 Branch
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: kmack, Assigned: KaiE)

References

(
URL
)

Details

(Whiteboard: click"catalog" navigation far right on the URL)

User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727) Build Identifier: 2.0.0.8 beginning today (not at all previously on any version of Firefox) clicking on the "catalog" navigation on www.alfredangelo.com and www.alfredangelostores.com that goes to the secured page for catalog ordering, the browser throws a warning that the web site is certified by an unknown authority. The web site is certified by Verisign. Certificate is accurate. My hosting company said that the interim sercutiry certificate on Firefox probably expired. They put a new interim security cert on our servers, and Firefox STILL RETURNS THE MISLEADING WARNING Reproducible: Always Steps to Reproduce: 1.access www.alfredangelo.com or www.alfredangelostores.com 2.click on the "catalog" navigation on far right 3.Warning is served. View certificate - it is accurate, valid and from a trusted source - Verisign Actual Results: See above, it's pretty straightforward Expected Results: My expected results are losing catalog orders from potential customers who happen to be on Firefox The software should have recognized the csecurity certificate as valid, as it has since the certificate was installed on 9/17/2007.
Version: unspecified → 2.0 Branch
Safari says the certificate is "signed by an unknown certifying authority". Given that Firefox and Safari agree, I think it's likely that there's still something wrong with your certificate.
Assignee: nobody → kengert
Component: General → Security: PSM
Product: Firefox → Core
QA Contact: general → psm
Version: 2.0 Branch → 1.8 Branch
URL: http://www.alfredangelo.com click"cat...http://www.alfredangelo.com
Whiteboard: click"catalog" navigation far right on the URL
Seamonkey trunk is happy with the certificate but FF3b4 and FF2.0 are showing the certificate error.
Certificate is fine, apparently there's an interim security certificate that expired, but has been replaced -- two different interim certificates as recommended by Verisign. Mozilla is not acknowledging it. OK on any version of IE, One of the two sites (www.alfredangelo.com) is OK on Safari, the other (www.alfredangelostores.com) is not, Firefox still displaying unrecognized authority. I still think it's a problem with Mozilla being able to update.
I could not reproduce this bug with: (www.alfredangelostores.com -> catalog) - current trunk build on mac - FF3b4 on two separate windows machines - FF2.0.0.13 on mac I could not find link to the catalog on www.alfredangelo.com. For now marking as WFM, if this bug prevails then please reopen. Did you provider somehow changed the certificate?
Status: UNCONFIRMED → RESOLVED
Closed: 18 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.