2 Replies Latest reply on Oct 9, 2013 10:19 AM by Regis

    "Something is trying to trick Firefox into accepting an insecure update. Please contact your network provider and seek help."

    Regis

      Greetings all,

       

      This error from Firefox  has been a thorn in our side for quite some time.  We do SSL inspection which I assume is the source of the issue.   I've added a lot of sites to SSL bypass, figuring this is a certificate pinning issue and that something Firefox is doing in its updates is crying foul here, but I'm still apaprently missing something as this error persists in this environment.

       

      ...in the process of pasting the following, I found an errant space  in the versioncheck-bg  pattern  (i.e.  mozilla.org  !=  mozilla. org ) that I believe may be the reason this was still not fixed.... While I'm hopeful that finding this errant space in my url pattern will solve my problem, I'm still curious to share notes with others on this one.

       

       

      SSL Scanner

           URL matches in list SSL URL Bypass List  -> stop ruleset

       

      SSL URL Bypass List

      1https://*.mozilla.org/update/*/update.xmlBelieved to be what causes the warnings for Mozilla updates.  See about:config app.update. properties aus3.mozilla.org is typical
      2https://versioncheck-bg.addons.mozilla.org/*  Yeah, url.host faster, but let's keep all rules for mozilla in one place until we get this figured out
      3https://services.addons.mozilla.org/*