среда, 22 марта 2017 г.

self-signed SSL certificate & Firefox 31-33


Firefox версий 31-33 имели баг, запрещающий использовать самоподписанные сертификаты. Причем его исправили только со второй попытки, поэтому в 3 версиях он присутствовал как fixed.

  

Решается:

1. Обновлением FF - лучше в дистрибутив поновее FF положить

2. Прописываем в FF в about:config security.use_mozillapkix_verification=true

https://blog.dob.sk/2014/07/23/firefox-31-self-signed-certificate-sec_error_ca_cert_invalid/

forums.mozillazine.org/viewtopic.php?f=38&t=2884241


Самый лучший комменатрий:
Also shows up as unresolved for version 33 on https://www.mozilla.org/en-US/firefox/releases/ I am an administrator that deals with a wide variety of devices that have self-signed certificates that are only accessible from a LAN, and encounter this error daily. MOZILLA HAS DECIDED THAT IT KNOWS BETTER THAN ME WHETHER OR NOT TO ACCEPT A SECURITY CERTIFICATE WHICH ONLY EXISTS ON MY NETWORK! Now instead of having a sloppy work-around (v31,32) - it just no longer works (v33). After fighting with it a few hours today I have decided it is much easier to use Chrome (which lets me decide if a certificate is safe) as my default browser as this issue has plagued me thru 3 versions now (31,32,33) and is still not resolved.













Автор:



на





Комментариев нет:
  











































 генерация современного самоподписанного сертификата для Weblogic














-bash-4.1$ cd /data/petroviz



-bash-4.1$ cp ./user_projects/domains/pviz/security/DemoIdentity.jks ./user_projects/domains/pviz/security/DemoIdentity.jks.bak



-bash-4.1$ keytool -keystore ./user_projects/domains/pviz/security/DemoIdentity.jks -alias DemoIdentity -storepass DemoIdentityKeyStorePassPhrase -genkeypair -keyalg RSA -keysize 4096 -sigalg SHA1withRSA -keypass DemoIdentityPassPhrase -validity 3560

What is your first and last name?

  [Unknown]:  petrovision

What is the name of your organizational unit?

  [Unknown]:  PetroVision

What is the name of your organization?

  [Unknown]:  Geoleader

What is the name of your City or Locality?

  [Unknown]:  Tyumen

What is the name of your State or Province?

  [Unknown]:  Tyumen

What is the two-letter country code for this unit?

  [Unknown]:  RU

Is CN=petrovision, OU=PetroVision, O=Geoleader, L=Tyumen, ST=Tyumen, C=RU correct?

  [no]:  yes
















Автор:



на





Комментариев нет:
  


































        

      









Подписаться на:
Комментарии (Atom)