[Bug 236610] [NEW] Firefox behaviour with unknown certificate authorities can block navigation
Alexander Sack
asac at jwsdot.com
Tue Jun 3 00:02:49 UTC 2008
On Sun, Jun 01, 2008 at 09:06:34PM -0000, Miguel Diago wrote:
> Public bug reported:
>
> Binary package hint: firefox-3.0
>
> When you access a secure webpage whose certificate has been signed by an
> unknown authority, you are redirected to a warning message and taken out
> of the website. This can be a problem when there are only some parts of
> the webpage that are secured, like iframes. In such cases, the alert
> about using an untrusted certificate can be bigger than the iframe
> itself and so the user can't click the link to add an exception and
> continue browsing the website.
>
> For example, to reproduce this:
> 1. Go to http://www.renfe.es/
> 2. In the left-hand column, in the "Compra de billetes" box, select one random element from the first roll menu.
> 3. See how the box becomes "secure" and a cropped security alert is shown in which the bottom link to add an exception can't be accessed.
>
Interesting point. Reed, are you aware if this was also raised
upstream?
affects firefox
affects xulrunner
affects ubuntu/firefox-3.0
status incomplete
affects ubuntu/xulrunner-1.9
status incomplete
- Alexander
** Also affects: firefox
Importance: Undecided
Status: New
** Also affects: xulrunner
Importance: Undecided
Status: New
** Changed in: firefox-3.0 (Ubuntu)
Status: Confirmed => Incomplete
** Also affects: xulrunner-1.9 (Ubuntu)
Importance: Undecided
Status: Incomplete
--
Firefox 'bad certificate' warning blocks navigation with small secured frames
https://bugs.launchpad.net/bugs/236610
You received this bug notification because you are a member of Mozilla
Bugs, which is a bug assignee.
More information about the Ubuntu-mozillateam-bugs
mailing list