[Bug 236610] [NEW] Firefox behaviour with unknown certificate authorities can block navigation

[Alexander Sack]

On Sun, Jun 01, 2008 at 09:06:34PM -0000, Miguel Diago wrote:
> Public bug reported:
> 
> Binary package hint: firefox-3.0
> 
> When you access a secure webpage whose certificate has been signed by an
> unknown authority, you are redirected to a warning message and taken out
> of the website. This can be a problem when there are only some parts of
> the webpage that are secured, like iframes. In such cases, the alert
> about using an untrusted certificate can be bigger than the iframe
> itself and so the user can't click the link to add an exception and
> continue browsing the website.
> 
> For example, to reproduce this:
> 1. Go to http://www.renfe.es/
> 2. In the left-hand column, in the "Compra de billetes" box, select one random element from the first roll menu.
> 3. See how the box becomes "secure" and a cropped security alert is shown in which the bottom link to add an exception can't be accessed.
> 

Interesting point. Reed, are you aware if this was also raised
upstream?

 affects firefox
 affects xulrunner

 affects ubuntu/firefox-3.0
 status incomplete
 affects ubuntu/xulrunner-1.9
 status incomplete


 - Alexander


** Also affects: firefox
   Importance: Undecided
       Status: New

** Also affects: xulrunner
   Importance: Undecided
       Status: New

** Changed in: firefox-3.0 (Ubuntu)
       Status: Confirmed => Incomplete

** Also affects: xulrunner-1.9 (Ubuntu)
   Importance: Undecided
       Status: Incomplete

-- 
Firefox 'bad certificate' warning blocks navigation with small secured frames
https://bugs.launchpad.net/bugs/236610
You received this bug notification because you are a member of Mozilla
Bugs, which is a bug assignee.