Where did you install Firefox from? Help Mozilla uncover 3rd party websites that offer problematic Firefox installation by taking part in our campaign. There will be swag, and you'll be featured in our blog if you manage to report at least 10 valid reports!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Lolu chungechunge lwabekwa kunqolobane. Uyacelwa ubuze umbuzo omusha uma udinga usizo.

Certificate Authority missing in Firefox 7.01 from Fedora 16

  • 3 uphendule
  • 2 zinale nkinga
  • 6 views
  • Igcine ukuphendulwa ngu cor-el

mneal3
mneal3
more options

Hi,

On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager.

On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site.

Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list?

Thanks, Mike

Hi, On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager. On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site. Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list? Thanks, Mike

Isisombululo esikhethiwe

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

Funda le mpendulo ngokuhambisana nalesi sihloko 👍 0

All Replies (3)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Isisombululo Esikhethiwe

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

mneal3
mneal3 Umnikazi wombuzo
more options

Makes sense. Thanks!

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

You're welcome.

You can contact the site and tell them about this omission, so they can correct it.