Where did you install Firefox from? Help Mozilla uncover 3rd party websites that offer problematic Firefox installation by taking part in our campaign. There will be swag, and you'll be featured in our blog if you manage to report at least 10 valid reports!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

How to fix MOZILLA_PKIX_ERROR_MITM_DETECTED when we use SSL Bumping ?

  • 1 reply
  • 1 has this problem
  • 15 views
  • Last reply by cor-el

Heryas
Heryas
more options

Hi everyone,

We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers.

Any ideas who can help ?

Hi everyone, We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers. Any ideas who can help ?

All Replies (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

There are related security.pki.mitm prefs available on the about:config page. This pref should tell you the issuer of the certificate.

  • security.pki.mitm_canary_issuer

You can set this pref to true on the about:config page to import root certificate(s) from the Windows certificate store.

  • security.enterprise_roots.enabled = true

See also: