Den här webbplatsen har begränsad funktionalitet medan vi utför underhåll för att förbättra din upplevelse. Om en artikel inte löser ditt problem och du vill ställa en fråga har vi vår gemenskap som väntar på att hjälpa dig på @FirefoxSupport på Twitter, /r/firefox på Reddit.

Avatar for Username

Sök i support

Akta dig för supportbedrägerier: Vi kommer aldrig att be dig att ringa eller skicka ett sms till ett telefonnummer eller dela personlig information. Rapportera misstänkt aktivitet med alternativet "Rapportera missbruk".

Läs mer

Denna tråd har arkiverats. Ställ en ny fråga om du behöver hjälp.

https doesn't work

  • 2 svar
  • 2 har detta problem
  • 10 visningar
  • Senaste svar av Cheng Wang

AnonymousUser
AnonymousUser
more options

Firefox 3.6.3. Https is not working (only recently) in a couple of sites including:

https://www.google.com https://www.microsoft.com

All the certificates provided where unable to verify the owner: "This web site does not supply ownership information" "Your connection is partially encrypted"

When i checked the error console, this came up

"www.google.com Potentially vulnerable to CVE-2009-2005" CVE-2009-2005 has something to do with Man-in-the-Middle.

Please help thanks.


URL of affected sites

https://www.google.com, https://www.microsoft.com

Firefox 3.6.3. Https is not working (only recently) in a couple of sites including: https://www.google.com https://www.microsoft.com All the certificates provided where unable to verify the owner: "This web site does not supply ownership information" "Your connection is partially encrypted" When i checked the error console, this came up "www.google.com Potentially vulnerable to CVE-2009-2005" CVE-2009-2005 has something to do with Man-in-the-Middle. Please help thanks. == URL of affected sites == https://www.google.com, https://www.microsoft.com

Alla svar (2)

Cheng Wang
Cheng Wang
more options

Those error messages are all different:

On Microsoft sites, they serve some content over HTTP (which is a security no-no) so you get that warning. You should contact their webmasters. Often on large pages, sites will only encrypt the sensitive stuff and not encrypt stuff like images to reduce server load. It's technically a bad security practice.

The google.com message is a issue with the way the server handles SSL renegotiation. It's not a big deal but we provide the warning anyway.

There's nothing actually wrong with either security certificate perse.

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

The message about CVE-2009-3555 is meant for webmasters to make them aware that they need to fix their servers. Firefox 3.6 versions can detect such a misconfiguration and displays a warning in the "Tools > Error Console". https://wiki.mozilla.org/Security:Renegotiation