User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9b5) Gecko/2008050509 Firefox/3.0b5 Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9b5) Gecko/2008050509 Firefox/3.0b5 When loading a https page with a self-signed cert in the Sidebar, you get the normal "Secure Connection Failed" page with error code "sec_error_untrusted_issuer". You can then click on "Or you can add an exception…". The two buttons that appear, "Get me out of here" and "Add Exception" are nonfunctional. This is only seen when loading a page with a self-signed cert, without a previously created exception, in the Sidebar. To get past this, you must load the page in the main window (not sidebar) and create the exception there. This probably doesn't affect many people (self-signed cert page in the sidebar), however it is pretty annoying if you do see it (and a non-technical user might have no idea how to get past this). Reproducible: Always Steps to Reproduce: 1. Create Sidebar bookmark for a page with a self-signed cert (which you don't already have an exception for). 2. Click on this bookmark. 3. Click on "Or you can add an exception" on the error page that loads. 4. Attempt to click on buttons. Actual Results: The "Add Security Exception" dialog box does not load (as it would if you followed the same steps outside of the sidebar). Expected Results: For the "Add Security Exception" dialog box to come up. The URL I submitted is not the page I am actually using in my sidebar, but is a publically accesible https site with a self-signed cert that I found from the Mozillazine Forums. I am able to reproduce this issue by loading this page as a sidebar.
I can duplicate this. Not sure how big a deal it is, most likely you visited the site in order to bookmark it in the first place so the exception was added at that time. A previously bookmarked site's cert could expire though, potentially requiring adding a new exception.
Severity: normal → minor
Status: UNCONFIRMED → NEW
Ever confirmed: true
I encountered this when I first loaded my browser after upgrading to Firefox 3, so I didn't have to do anything too crazy to stumble upon it. Though I agree, its impact is pretty narrow. I don't imagine many people use side-bar pages with self-signed certs and also had the sidebar bookmarked pre-Firefox 3.
This is still a bug in 3.6.15. I ran across it again because (as predicted above) the sites old cert expired and I needed to accept the new one.
You need to log in before you can comment on or make changes to this bug.