Eddy Nigg (StartCom Ltd.) [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
Mele wrote:
The microsoft.ipsos.com is on rackspace.com which is another Microsoft
partner. Firefox should not bork at this Microsoft partner site. The
certs are at the site and IE has no problem getting them.
Well...First, this kind of domain name is unfortunate and one can't blame
the user for not getting used to all kinds of microsoft.something.com
URLs... Second, Firefox barks at any web site, which doesn't have the
certificate installed correctly. This has nothing to do with Microsoft
partners per se...
It is one of the weak spots in Fx and I'm tired of the problems.
It's currently not a weak spot of Firefox...but I asked Nelson for the RFC
which suggests that one /can/ fetch intermediate CA certificates the way
IE does. If there is such a standard which suggests it as an option, than
I think Mozilla should implement it
You just blamed the server at the Ipsos site.
Correct, the installation is not complete at that site!
Maybe the blame is on a misconfigured server
Yes, it is! It is not configured and installed correctly! This *is* the
problem...
If you install a web page wrongfully on your web server and the page
doesn't render, who do you have to blame? The browser? Of course not...so
in this case, this is a problem of the server admin as well...
but finger pointing doesn't get the problem solved. You did not offer
one constructive idea of how to fix this sort of problem that Fx has, but
IE doesn't, other than complain to the webmaster or better just go use
IE.
I'd rather suggest *not* to visit that site and *not* participate in any
survey until the problem is fixed! Obviously this site doesn't really give
you a good feeling...judging from the URL, certificate installation
etcI wouldn't provide any data...But perhaps this is what it's all
about? Maybe they don't want non-microsoft - non-IE users to participate?
;-)
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: [EMAIL PROTECTED]
Phone: +1.213.341.0390
Oh, I just went to the site on IE and did the survey on IE. I have done
these surveys before but quite awhile since one from this Microsoft partner.
I just went to the http://www.microsoft.com/mscorp/marketing_research/ site
again a couple of hours ago and up popped a request for me to do another
survey! I was supposed to surf about and then come back and do the survey.
Fx didn't bork on this...but this survey by CmScore is not https because the
answers are anon. The earlier survey asks permission to link my answers to
my Microsoft Profile so I can be contacted for further explanation of my
answers especially the last one where I type several paragraphs about what
is the one thing Microsoft can do to gain better customer trust and
satisfaction.
The thing is having to do it on IE was a bummer because the same thing
happened that happened once before using IE for one of these surveys. I took
considerable pains at the end to type about six paragraphs regarding what
one thing Microsoft can do to improve customer satisfaction and trust. I
went to submit the survey and got a error saying it had timed out. I tried
to go back to the previous page where those six paragraphs were and
couldn't. I was mad! So, I didn't submit the survey and I wrote the email
address we were given if we had questions or problems. The irony here is
that if I had just accepted the cert on Fx and done the survey on Fx, I am
almost certain that if I got a time out at the end that I could have gone
back to the previous page where those six paragraphs were and saved all the
answers (the survey is so long that you are periodically offered the chance
to save your answers and finish it another time) and then later come back
and submitted. IE has a flaw in this regard that Fx doesn't.
I certainly agree that, if possible, Fx should fetch those intermediate CA
certs like IE does. This not the first time I have encountered a problem
like this with Fx and I have asked earlier for some resolution besides
contacting the naughty webmaster who didn't read the Verisign emails and
thus doesn't have his server properly configured. I, the end user, should
not need to do that or to scratch my head and wonder if I should accept the
cert for this time only, etc.
What's different about 1.0? Someone I know fairly well stated that he had no
problems with Fx 1.0 at the site.
___
dev-security mailing list
dev-security@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security