Co-incidentally, now that I've resolved that certificate problem, I am now getting an issue connecting to https://support.mozilla.org/1/firefox/40.0.3/Darwin/en-GB/clicktoplay
Secure Connection Failed The connection to support.mozilla.org was interrupted while the page was loading. The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the web site owners to inform them of this problem. I suspect our proxy behaviour is preventing access but Chrome accesses this URI with a green padlock in the address bar. Other domains are also affected. I'd also personally like to breakdown the issues we are experiencing that unintentionally block this URI in this same context to see if it's relevant and important. On Wednesday, 16 September 2015 08:42:33 UTC+10, AnilG wrote: > My point is that Firefox will be no good for the web if no one is using it. > > . . . I'm just saying with respect to this particular _kind of issue_ (I know > of 2 instances that hit my organisation that accomplished full removal of > Firefox over 3 years) it looks to me like this could be one _kind of issue_ > where known solutions exist and can be having a big influence on Firefox > usage, significantly out of proportion to the effort and ability to fix it; > have you evaluated the threat? > On Tuesday, 15 September 2015 19:21:26 UTC+10, Gervase Markham wrote: > > On 15/09/15 01:12, Anil Gulati wrote: > > > To remove unnecessary impediments to Firefox use and adoption wouldn't it > > > make sense to configure Firefox to use the OS cert store by default, and > > > allow an option to use internal cert database? > > > > We would love it if the OS would give us a list of _just_ the > > user-installed certs, but as far as we are aware, this is not possible > > on Windows. > > > > See https://bugzilla.mozilla.org/show_bug.cgi?id=432802 for more details. > > > > As I noted there, due to these API problems, "recognizing the Windows > > trust store is equivalent to abandoning our own root program and > > adopting whatever Microsoft decides (because we can't tell which certs > > are user-imported and which are MS-provided). That would not be a good > > thing for the web." > > > > Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
