Open Bug 500312 Opened 16 years ago Updated 3 years ago

ssl_error_bad_cert_domain when using SSL to check IMAP mail on Seamonkey 2.0b1 nightly

Categories

(Core :: Security, defect)

Product:
Core
Component:
Security
Version:
1.9.1 Branch
Platform:
PowerPC
macOS
Type:
defect

Tracking

()

Status:
UNCONFIRMED

People

(Reporter: mozilla.org, Unassigned)

Details

(Whiteboard: DUPEME?)

Attachments

(4 files)

Button "Confirm Security Exception"
10.63 KB, image/png
Details
Screen shot of ssl_error_bad_cert_domain dialog box
35.48 KB, image/png
Details
Screen shot of certificate information dialog box, General page
60.45 KB, image/png
Details
Screen shot of certificate information dialog box, Details page
41.12 KB, image/png
Details
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_5_7; en-us) AppleWebKit/530.17 (KHTML, like Gecko) Version/4.0 Safari/530.17 Build Identifier: Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10.5; en-US; rv:1.9.1pre) Gecko/20090624 SeaMonkey/2.0b1pre Using today's nightly build of Seamonkey 2.0b1 for the Mac, I cannot use SSL to check my IMAP mail. When I do, I get this dialog box. a1.balanced.looney.mail.dreamhost.com:993 uses an invalid security certificate. "The certificate is only valid for *.mail.dreamhost.com (Error code: ssl_error_bad_cert_domain) This could be a problem with the server's configuration or it could be someone trying to impersonate the server. If you have connected to this server successfully in the past the error may be temporary and you can try again later." Then I have a choice of two buttons: View Certificate and Cancel. If I press View Certificate, I see the certificate data. If I close that window, it shows me the above error message again. If I press Cancel, the error message is dismissed and then reappears. There is no way for me to continue. This problem does not happen on 2.0a3. Reproducible: Always
Version: unspecified → Trunk
> If I press Cancel, the error message is dismissed and then reappears. There is > no way for me to continue. There is button "Confirm Security Exception" for save Certificate. See images in Attachment.
Component: MailNews: Account Configuration → Security
Product: SeaMonkey → Core
QA Contact: mailnews-account → toolkit
Whiteboard: DUPEME?
Version: Trunk → 1.9.1 Branch
You posted a screen shot from the Windows version. I am using a Mac. I'm attaching three PNG screen shots of what the windows look on my system. As you can see, I don't have a "Confirm Security Exception" button.
I have a very similar problem accessing an s3 (amazon web services) bucket through https with Firefox (3.5.2 on Windows XP). Since the certificate is valid for *.s3.amazonaws.com, shouldn't it validate e.g. xyz653.s3.amazonaws.com? (a domain to access the xyz653bucket) Why should this be specified as an exception? I tried the same https URL with Firefox 3.0.13 on an Ubuntu 9.04 installation and had no problem. Weird!?
I think I know what the problem. I have Seamonkey configured only to launch the browser, not the "Mail and Newsgroups" program. Without the mail program running, the dialog box that allows me to add the exception will not display. I have to manually open the mail program, and voila, the exception dialog appears.
Severity: normal → S3
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: