This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Can't Access my Web Server with HTTP

  • 4 ŋuɖoɖowo
  • 1 masɔmasɔ sia le esi
  • 6 views
  • Nuɖoɖo mlɔetɔ Dean Weimer

more options

I have my own web server, and suddenly I can only access the site with HTTPS from Firefox on my home PC. I have tried adjusting the autofill settings clearing cache, even added a link on the page to click and load it as HTTP instead. Nothing works it always comes up with HTTPS. The page does load with Firefox on other machines as HTTP. So I suspect that at some point an error page loaded with a secure transport header in it (perhaps while doing maintenance on my firewall with uses NAT reflection to direct local machines to the web server) and Firefox has cached that in some method that it is not letting me clear it. I appreciate that there is some effort going into making the web more secure. But the site contains nothing that requires security and being the sites maintainer I need to be able to test it with both HTTP and HTTPS.

I have my own web server, and suddenly I can only access the site with HTTPS from Firefox on my home PC. I have tried adjusting the autofill settings clearing cache, even added a link on the page to click and load it as HTTP instead. Nothing works it always comes up with HTTPS. The page does load with Firefox on other machines as HTTP. So I suspect that at some point an error page loaded with a secure transport header in it (perhaps while doing maintenance on my firewall with uses NAT reflection to direct local machines to the web server) and Firefox has cached that in some method that it is not letting me clear it. I appreciate that there is some effort going into making the web more secure. But the site contains nothing that requires security and being the sites maintainer I need to be able to test it with both HTTP and HTTPS.

Ŋuɖoɖo si wotia

you could also try to edit the "SiteSecurityServiceState.txt" file in your profile while firefox is closed - it holds the sites which sent the hsts flag in the past...

Profiles - Where Firefox stores your bookmarks, passwords and other user data

Xle ŋuɖoɖo sia le goya me 👍 0

All Replies (4)

more options

hi, you can use the https://addons.mozilla.org/firefox/addon/force-tls/ addon in order to edit/clear sites which are stored with a HSTS flag.

more options

This Add-On Appears to be broken in recent versions of Firefox.

XML Parsing Error: undefined entity Location: chrome://forcetls/content/forcedsites.xul Line Number 125, Column 7: <button oncommand="close();" icon="close" <="" p="">


^</button>

more options

Ɖɔɖɔɖo si wotia

you could also try to edit the "SiteSecurityServiceState.txt" file in your profile while firefox is closed - it holds the sites which sent the hsts flag in the past...

Profiles - Where Firefox stores your bookmarks, passwords and other user data

more options

This fixed it, thanks for the help.