[Bug 236610] [NEW] Firefox behaviour with unknown certificate authorities can block navigation
Miguel Diago
mdiagom at gmail.com
Sun Jun 1 21:06:34 UTC 2008
Public bug reported:
Binary package hint: firefox-3.0
When you access a secure webpage whose certificate has been signed by an
unknown authority, you are redirected to a warning message and taken out
of the website. This can be a problem when there are only some parts of
the webpage that are secured, like iframes. In such cases, the alert
about using an untrusted certificate can be bigger than the iframe
itself and so the user can't click the link to add an exception and
continue browsing the website.
For example, to reproduce this:
1. Go to http://www.renfe.es/
2. In the left-hand column, in the "Compra de billetes" box, select one random element from the first roll menu.
3. See how the box becomes "secure" and a cropped security alert is shown in which the bottom link to add an exception can't be accessed.
I will attach an screenshot of the problem.
ProblemType: Bug
Architecture: i386
Date: Sun Jun 1 23:01:58 2008
DistroRelease: Ubuntu 8.04
NonfreeKernelModules: nvidia
Package: firefox-3.0 3.0~b5+nobinonly-0ubuntu3
PackageArchitecture: i386
ProcEnviron:
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
LANG=es_ES.UTF-8
SHELL=/bin/bash
SourcePackage: firefox-3.0
Uname: Linux 2.6.24-17-generic i686
** Affects: firefox-3.0 (Ubuntu)
Importance: Undecided
Status: New
** Tags: apport-bug
--
Firefox behaviour with unknown certificate authorities can block navigation
https://bugs.launchpad.net/bugs/236610
You received this bug notification because you are a member of Mozilla
Bugs, which is subscribed to firefox-3.0 in ubuntu.
More information about the Ubuntu-mozillateam-bugs
mailing list