본 사이트는 여러분의 사용자 경험을 개선하기 위해 유지 보수를 진행하는 동안 기능이 제한됩니다. 도움말로 문제가 해결되지 않고 질문을 하고 싶다면 Twitter의 @FirefoxSupport 및 Reddit의 /r/firefox 채널을 활용하세요.

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

Certificate Authority missing in Firefox 7.01 from Fedora 16

  • 3 답장
  • 2 이 문제를 만남
  • 3 보기
  • 최종 답변자: cor-el

more options

Hi,

On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager.

On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site.

Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list?

Thanks, Mike

Hi, On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager. On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site. Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list? Thanks, Mike

선택된 해결법

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

문맥에 따라 이 답변을 읽어주세요 👍 0

모든 댓글 (3)

more options

선택된 해결법

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

more options

Makes sense. Thanks!

more options

You're welcome.

You can contact the site and tell them about this omission, so they can correct it.