Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

sec_error_bad_signature vs. sec_error_untrusted_issuer

  • 2 replies
  • 256 have this problem
  • 2 views
  • Last reply by SCGR

more options

When attempting to visit my SSL secured server (which uses a self-signed cert) on my local network, I get sec_error_bad_signature with no further usable information. However, when visiting my router config page, which also uses a self-signed cert, I get sec_error_untrusted_issuer which allows me to make an exception.

Is there any way to get a more verbose and useful error message from Firefox so I can figure out exactly why Firefox 3.6 will allow me to accept one self-signed cert while not allowing me to accept another?

When attempting to visit my SSL secured server (which uses a self-signed cert) on my local network, I get sec_error_bad_signature with no further usable information. However, when visiting my router config page, which also uses a self-signed cert, I get sec_error_untrusted_issuer which allows me to make an exception. Is there any way to get a more verbose and useful error message from Firefox so I can figure out exactly why Firefox 3.6 will allow me to accept one self-signed cert while not allowing me to accept another?

All Replies (2)

more options

the same, want to know reason and solution. thanks.

more options

What worked for me was to use a self-signed certificate, instead of using a certificate that was signed by some other self-signed certificate.