"Eddy Nigg (StartCom Ltd.)" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > Mele wrote: >> The microsoft.ipsos.com is on rackspace.com which is another Microsoft >> partner. Firefox should not bork at this Microsoft partner site. The >> certs are at the site and IE has no problem getting them. >> > Well...First, this kind of domain name is unfortunate and one can't blame > the user for not getting used to all kinds of "microsoft.something.com" > URLs... Second, Firefox barks at any web site, which doesn't have the > certificate installed correctly. This has nothing to do with Microsoft > partners per se... >> It is one of the weak spots in Fx and I'm tired of the problems. > It's currently not a weak spot of Firefox...but I asked Nelson for the RFC > which suggests that one /can/ fetch intermediate CA certificates the way > IE does. If there is such a standard which suggests it as an option, than > I think Mozilla should implement it.... >> You just blamed the server at the Ipsos site. > Correct, the installation is not complete at that site! >> Maybe the blame is on a misconfigured server > Yes, it is! It is not configured and installed correctly! This *is* the > problem... > > If you install a web page wrongfully on your web server and the page > doesn't render, who do you have to blame? The browser? Of course not...so > in this case, this is a problem of the server admin as well... >> but finger pointing doesn't get the problem solved. You did not offer >> one constructive idea of how to fix this sort of problem that Fx has, but >> IE doesn't, other than complain to the webmaster or better just go "use >> IE". > I'd rather suggest *not* to visit that site and *not* participate in any > survey until the problem is fixed! Obviously this site doesn't really give > you a good feeling...judging from the URL, certificate installation > etc....I wouldn't provide any data...But perhaps this is what it's all > about? Maybe they don't want non-microsoft - non-IE users to participate? > ;-) > > -- > Regards > > Signer: Eddy Nigg, StartCom Ltd. > Jabber: [EMAIL PROTECTED] > Phone: +1.213.341.0390
Oh, I just went to the site on IE and did the survey on IE. I have done these surveys before but quite awhile since one from this Microsoft partner. I just went to the http://www.microsoft.com/mscorp/marketing_research/ site again a couple of hours ago and up popped a request for me to do another survey! I was supposed to surf about and then come back and do the survey. Fx didn't bork on this...but this survey by CmScore is not https because the answers are anon. The earlier survey asks permission to link my answers to my Microsoft Profile so I can be contacted for further explanation of my answers especially the last one where I type several paragraphs about what is the one thing Microsoft can do to gain better customer trust and satisfaction. The thing is having to do it on IE was a bummer because the same thing happened that happened once before using IE for one of these surveys. I took considerable pains at the end to type about six paragraphs regarding what one thing Microsoft can do to improve customer satisfaction and trust. I went to submit the survey and got a error saying it had timed out. I tried to go back to the previous page where those six paragraphs were and couldn't. I was mad! So, I didn't submit the survey and I wrote the email address we were given if we had questions or problems. The irony here is that if I had just accepted the cert on Fx and done the survey on Fx, I am almost certain that if I got a time out at the end that I could have gone back to the previous page where those six paragraphs were and saved all the answers (the survey is so long that you are periodically offered the chance to save your answers and finish it another time) and then later come back and submitted. IE has a flaw in this regard that Fx doesn't. I certainly agree that, if possible, Fx should fetch those intermediate CA certs like IE does. This not the first time I have encountered a problem like this with Fx and I have asked earlier for some resolution besides contacting the "naughty" webmaster who didn't read the Verisign emails and thus doesn't have his server properly configured. I, the end user, should not need to do that or to scratch my head and wonder if I should accept the cert "for this time only", etc. What's different about 1.0? Someone I know fairly well stated that he had no problems with Fx 1.0 at the site. _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
