Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Bitdefender Online Threat Prevention blocking Firefox from making suspicious connection

  • 6 个回答
  • 1 人有此问题
  • 1 次查看
  • 最后回复者为 carter39

more options

“Firefox.exe attempted to establish a connection relying on an unmatching security certificate to gitcdn.xyz. We blocked the connection to keep your data safe since the used certificate was issued for a different web address than the targeted one.”

Does anyone know what this is about? Thanks.

Carter

“Firefox.exe attempted to establish a connection relying on an unmatching security certificate to '''gitcdn.xyz'''. We blocked the connection to keep your data safe since the used certificate was issued for a different web address than the targeted one.” Does anyone know what this is about? Thanks. Carter

被采纳的解决方案

In my opinion, the url that you cited is "not" good.

You see, legitimate websites have 100% no issue with using URL's that are understandable and are associated to their brand.

But of course, legitimate websites might also push the boundaries to aggregate info from your computer for marketing purposes. However, what these legitimate websites do are by no comparison of the evil websites that disguise themselves, lure you to their websites and then do all kinds of things - things that the tech industry is fighting against.

So to make a long story short, that URL you cited looks like "garbage" to me and nobody in their right minds should go to it.

However, people are likely going to it because they are being "re-directed" to it via some other phony website that looks legitimate but is it not.

For example, a website that would look legitimate to most people would be something like www.walmart.con instead of walmart.com

And then from walmart.con the user would unknowingly be sent to that .xyz cite

It's best just to take heed of what the browsers recommend and say about suspicious sites. Ultimately, if the user takes the risk to visit these sites, then the user will likely experience days and weeks of computer malfunction due to infection.

定位到答案原位置 👍 0

所有回复 (6)

more options

hello carter,

i think FF would have given you the same warming without BitDefender. Attached is a warning i got for another site. And the warning was also provided to me by a different browser.

These warnings is part of the tech industry fighting for you/us against bad websites.

Websites that we have been using for many years, could have also been aggregating information about us and without our knowledge.

So i would suggest to take notice of such warnings about suspicious websites and think twice about patronizing them. On the other hand, there could be legitimate websites that are trustworthy. But they need to take affirmative action like updating their "certificates", which browsers use to validate the websites

more options

Thank you for your reply and the useful information therein. What I would like to know is if gitcdn.xyz is a part of Mozilla and legitimate, or not.

Carter

more options

选择的解决方案

In my opinion, the url that you cited is "not" good.

You see, legitimate websites have 100% no issue with using URL's that are understandable and are associated to their brand.

But of course, legitimate websites might also push the boundaries to aggregate info from your computer for marketing purposes. However, what these legitimate websites do are by no comparison of the evil websites that disguise themselves, lure you to their websites and then do all kinds of things - things that the tech industry is fighting against.

So to make a long story short, that URL you cited looks like "garbage" to me and nobody in their right minds should go to it.

However, people are likely going to it because they are being "re-directed" to it via some other phony website that looks legitimate but is it not.

For example, a website that would look legitimate to most people would be something like www.walmart.con instead of walmart.com

And then from walmart.con the user would unknowingly be sent to that .xyz cite

It's best just to take heed of what the browsers recommend and say about suspicious sites. Ultimately, if the user takes the risk to visit these sites, then the user will likely experience days and weeks of computer malfunction due to infection.

more options

Thank you both for your replies and good advice. Coincidentally, there were no warnings from Firefox about this bogus link.

Carter

more options

A website like http://gitcdn.xyz/ needs to be accessed via the open http:// protocol because there is currently no valid certificate installed, so if you use of force https:// then you get an error page. This is a so called CDN (Content Delivery Network) website for fast access to GitHub content.

You will have to use http for now or accept the risk if you need to access this website. See this subreddit:


Websites prove their identity via certificates. Firefox does not trust this site because it uses a certificate that is not valid for gitcdn.xyz. The certificate is only valid for the following names: *.herokuapp.com, herokuapp.com Error code: SSL_ERROR_BAD_CERT_DOMAIN

由cor-el于修改

more options

Thank you for your cogent explanation, cor-el.

Carter