Firefox will not connect to either mozilla or it's add-ons page. Why?
The owner of services.addons.mozilla.org has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.
This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely. As a result, it is not possible to add an exception for this certificate.
Learn more…
services.addons.mozilla.org uses an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.
Error code: SEC_ERROR_UNKNOWN_ISSUER
Chosen solution
Thanks to all who came to my aid on this issue.
I uninstalled and reinstalled Firefox, and had the same issue. Then I opened the Profile directory and replaced the cert with the old copy from my pre-refresh version. That solved the entire issue. I think that the cert was somehow corrupted.
Read this answer in context 👍 4All Replies (13)
hi, what security software are you using? How to troubleshoot security error codes on secure websites
I'm using Avast. I refreshed my Firefox and it wouldn't even connect to the Mozilla sites, stating the certificates were not valid. I'm here now by using the Avast Safezone browser. Even disabling Avast doesn't work.
This is what I receive, minus the certificate code:
https://addons.mozilla.org/firefox/?utm_source=snippet&utm_medium=snippet&utm_campaign=addons
Peer's Certificate issuer is not recognized.
HTTP Strict Transport Security: false HTTP Public Key Pinning: true
Try to rename the cert8.db and SiteSecurityServiceState.txt files in the profile folder to see if that allows to inspect the certificate if you currently can't do this.
You can use this button to go to the current Firefox profile folder:
- Help -> Troubleshooting Information -> Profile Directory:
Windows: Show Folder; Linux: Open Directory; Mac: Show in Finder - http://kb.mozillazine.org/Profile_folder_-_Firefox
If you can't inspect the certificate via "Add Exception" then try this:
Open the "Add Security Exception" window by pasting this chrome URL in the Firefox location/address bar and check the certificate:
- chrome://pippki/content/exceptionDialog.xul
In the location field of this window type or paste the URL of the website with the https:// protocol prefix (https://xxx.xxx).
- retrieve the certificate via the "Get certificate" button
- click the "View..." button to inspect the certificate in the Certificate Viewer
You can inspect details like the issuer and the certificate chain in the Details tab of the Certificate Viewer. Check who is the issuer of the certificate.
please disable https scanning in avast like described here.
I have disabled https scanning in Avast, however it does not work. Before refreshing Firefox I did not have this problem with the certs from Mozilla not being considered valid.
if the certs really genuinely were from mozilla, there wouldn't be a problem. can you give us more information about the error by clicking on the error code, copying the text to the clipboard and then pasting it here into a reply in the forum (like shown in the screenshot).
thank you!
I get two error messages.
Your connection is not secure
The owner of services.addons.mozilla.org has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.
This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely. As a result, it is not possible to add an exception for this certificate.
Learn more…
services.addons.mozilla.org uses an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.
Error code: SEC_ERROR_UNKNOWN_ISSUER
and,
______________________________ Your connection is not secure
The owner of support.mozilla.org has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.
Learn more…
Report errors like this to help Mozilla identify misconfigured sites
support.mozilla.org uses an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.
Error code: SEC_ERROR_UNKNOWN_ISSUER https://support.mozilla.org/kb/what-does-your-connection-is-not-secure-mean Peer's Certificate issuer is not recognized. HTTP Strict Transport Security: false HTTP Public Key Pinning: false Certificate chain: -----BEGIN CERTIFICATE-----
Then it just lists the certificate code.
Modified
the certificate code is exactly the part that i would be interested in...
never min, i've received it in the mail notification when you've originally replied. you're connection is intercepted by something which uses a cert that looks like this: commonName = pscertauthority.com organizationalUnitName = Pearl Echo organizationName = Pearl Software, Inc. localityName = Exton stateOrProvinceName = PA countryName = US
in case you're in a corporate network where there is monitoring of secure connections taking place, please get in contact with your it department to inquire how firefox should be set-up for that...
I'm not in any corporate network. I am using my home PC.
This is the cert info, though it overlaps.
-BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIEAqEX4zANBgkqhkiG9w0BAQsFADCBpTELMAkGA UEBhMC VVMxCzAJBgNVBAgMAlBBMQ4wDAYDVQQHDAVFeHRvbjEdMBsGA1UECgwUUGVhcmwg U29mdHdhcmUsIEluYy4xEzARBgNVBAsMClBlYXJsIEVjaG8xHDAaBgNVBAMME3Bz Y2VydGF1dGhvcml0eS5jb20xJzAlBgkqhkiG9w0BCQEWGGluZm9AcHNjZXJ0YXV0 aG9yaXR5LmNvbTAeFw0xNjA2MjgxNTMwMDRaFw0yNjA2MjcxNTMwMDRaMIIBCTEd MBsGA1UEDwwUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMC VVMxGzAZBgsrBgEEAYI3PAIBAhMKQ2FsaWZvcm5pYTERMA8GA1UEBRMIQzI1NDM0 MzYxHjAcBgNVBAkTFTY1MCBDYXN0cm8gU3QgU3RlIDMwMDEOMAwGA1UEERMFOTQw NDExCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1N b3VudGFpbiBWaWV3MRswGQYDVQQKExJNb3ppbGxhIEZvdW5kYXRpb24xHDAaBgNV BAMTE3N1cHBvcnQubW96aWxsYS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCsLR8iaufQMY8oB/xJ2hQRTUWnvM9SzMA92Ad9AgHlGk+wC6/6Br8Q wTCPhH5wb8NoB/YOXqoHMgrR8L4Ezt5G4BpTA4qADpYseX9Gp3VWUJ9ZMeyQfakb UXLjcsDI0ni/kqnIUwoIeG8QzwoNXmB7JX89UapIdv64rrqjJJOGkQfJNgq7mhwd bGoDPBWh4kLVTdxT8RROrpR+kVo2MEjdpuc9q7Ezw7pMJJDo0LkPQXMN7QTYSSty ZDMHw/6w81KKk7LMIQhsOahcmaeH/HxVhO4vnxBi793xVBNuY8Lm6CxKdUT+wMJQ GXcRR/FVXFL7dn8s0535Vq9cM5gOP0+7AgMBAAGjgbkwgbYwMwYDVR0RBCwwKoIT c3VwcG9ydC5tb3ppbGxhLm9yZ4ITc3VwcG9ydC5tb3ppbGxhLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEIGA1UdIAQ7 MDkwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAQEAYuNx JuZ+tWI6aGASGRHzh1qK+gQRfni2SuzyAWivIxhwWN2lnlfx35pHIRs5OM7KPhtz Lg7meI5zctswnDJtc8KIuoMVrVoncic2Rlr7qsCrGiOixBneqg0hFzEi/IGWlBW4 OTeij6e4IIROnTf/aLY/VzwUqQ54cH9dn0Q/TKqgdM1Wdg/QXz/1v0lb/53WRTU9 fa2IOQOj7FO25qEHzk01rQKNsbt93WwhPBYsHnoi0wqtuWX/inD0FN5ZTL1lVcf/ N/MsKUpidXixDUMpO8SWx7fcynu9RxNKBjH/f9RPloJL3Ulp4QzuN4HzINfOIJU1 rAWlJzJVcmyDKYk/IQ== -----END CERTIFICATE-----
then there is some software on your device monitoring/snooping encrypted connections by this software vendor: http://www.pearlsoftware.com/
Also just in case, make sure your system date/time is correct.
Chosen Solution
Thanks to all who came to my aid on this issue.
I uninstalled and reinstalled Firefox, and had the same issue. Then I opened the Profile directory and replaced the cert with the old copy from my pre-refresh version. That solved the entire issue. I think that the cert was somehow corrupted.