We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

You have asked Firefox to connect securely to vabenefits.vba.va.gov, but we can't confirm that your connection is secure.

more options

vabenefits.vba.va.gov uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided.

vabenefits.vba.va.gov uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided.

所有回复 (1)

more options

To make a long story short, Firefox checks each web server's certificate against a list of "trusted" signing certificates. If the webserver's certificate was NOT signed by one of those, Firefox expects the webserver to send the signing certificate. And if necessary its signing certificate, forming a chain of trust all the way up to a trusted root certificate.

That server is sending only its own certificate. Screen shot attached showing what I mean.

So what should you do? Firefox does allow you to make exceptions and trust certificates even when you can't be sure that they are legit because there isn't a chain of trust. You can find that at the bottom of the error page under "I understand the risks".

However, it would be better/safer if we knew for sure that this server hasn't been hijacked before making an exception. Because nowadays, stuff happens to government websites.