HowToAcceptSelfSignedCertsForHttps: Difference between revisions
m (added Category:User experience using HotCat) |
mNo edit summary |
||
| Line 1: | Line 1: | ||
A number of sites including Soylentnews, in places, use self signed certs for https encryption. | |||
The first time you go to such a site, you will see some sort of warning from your browser. The exact nature of that warning varies, each browser handles it a little differently. What is important is that you need to use whatever facility is provided to tell your browser that it is ok to continue on connecting, and, unless you want to deal with that message every time you visit the site, you need to tell it to remember your choice. | |||
Some examples of typical browser warnings | |||
==Some examples of typical browser warnings== | |||
Below, I have loosely recorded the steps I had to take with some of the browsers I have available here. If you are having trouble, reading through these - even if your exact browser is not here - may help a bit. You can at least get a rough ideas of what is required. | Below, I have loosely recorded the steps I had to take with some of the browsers I have available here. If you are having trouble, reading through these - even if your exact browser is not here - may help a bit. You can at least get a rough ideas of what is required. | ||
Internet Explorer | |||
Firefox | ===Internet Explorer=== | ||
===Firefox=== | |||
-- Mac Version 3.6 | -- Mac Version 3.6 | ||
This Connection is Untrusted | This Connection is Untrusted | ||
| Line 28: | Line 32: | ||
Technical Details | Technical Details | ||
www. | www.xxxxx.org uses an invalid security certificate. | ||
The certificate is not trusted because it is self-signed. | The certificate is not trusted because it is self-signed. | ||
The certificate is only valid for | The certificate is only valid for yyyy.xxxxx.org | ||
(Error code: sec_error_untrusted_issuer) | (Error code: sec_error_untrusted_issuer) | ||
| Line 38: | Line 42: | ||
- select 'I Understand the Risks' | - select 'I Understand the Risks' | ||
If you understand what's going on, you can tell Firefox to start trusting this site's identification. Even if | If you understand what's going on, you can tell Firefox to start trusting this site's identification. Even if you trust the site, this error could mean that someone is tampering with your connection. | ||
you trust the site, this error could mean that someone is tampering with your connection. | |||
Don't add an exception unless you know there's a good reason why this site doesn't use trusted identification. | Don't add an exception unless you know there's a good reason why this site doesn't use trusted identification. | ||
| Line 53: | Line 56: | ||
Opera | ===Opera=== | ||
-- Mac Version 10.10.0 | -- Mac Version 10.10.0 | ||
| Line 61: | Line 64: | ||
'You need to approve or reject the loading of this page' | 'You need to approve or reject the loading of this page' | ||
/Help/ /Reject/ /Approve/ | /Help/ /Reject/ /Approve/ | ||
-select security tab, see: | -select security tab, see: | ||
The certificate for "www. | The certificate for "www.xxxxx.org" is signed by the unknown Certificate Authority | ||
"www. | "www.xxxxx.org". It is not possible to verify that this is a valid certificate. | ||
/X/ Remember my choice for this certificate | /X/ Remember my choice for this certificate | ||
| Line 74: | Line 76: | ||
===Safari=== | |||
Safari | |||
-- Mac Version 4.1.3 | -- Mac Version 4.1.3 | ||
'Safari can't verify the identity of the website www. | 'Safari can't verify the identity of the website www.xxxxx.org' | ||
/Show Certificate/ /Cancel/ /Continue/ | /Show Certificate/ /Cancel/ /Continue/ | ||
Revision as of 20:15, 6 September 2014
A number of sites including Soylentnews, in places, use self signed certs for https encryption.
The first time you go to such a site, you will see some sort of warning from your browser. The exact nature of that warning varies, each browser handles it a little differently. What is important is that you need to use whatever facility is provided to tell your browser that it is ok to continue on connecting, and, unless you want to deal with that message every time you visit the site, you need to tell it to remember your choice.
Some examples of typical browser warnings
Below, I have loosely recorded the steps I had to take with some of the browsers I have available here. If you are having trouble, reading through these - even if your exact browser is not here - may help a bit. You can at least get a rough ideas of what is required.
Internet Explorer
Firefox
-- Mac Version 3.6
This Connection is Untrusted
/Get me out of here/
You have asked Firefox to connect securely to www.homeviva.demmers.org, but we can't confirm that your connection is secure.
Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.
What Should I Do?
If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.
Technical Details
www.xxxxx.org uses an invalid security certificate.
The certificate is not trusted because it is self-signed.
The certificate is only valid for yyyy.xxxxx.org
(Error code: sec_error_untrusted_issuer)
- select 'I Understand the Risks'
If you understand what's going on, you can tell Firefox to start trusting this site's identification. Even if you trust the site, this error could mean that someone is tampering with your connection.
Don't add an exception unless you know there's a good reason why this site doesn't use trusted identification.
- select /Add Exception/
- select /X/ permanently store this exception
- select /Confirm Security Exception/
-- Version X.6
Opera
-- Mac Version 10.10.0
'Warning this page may not be secure'
'You need to approve or reject the loading of this page' /Help/ /Reject/ /Approve/
-select security tab, see:
The certificate for "www.xxxxx.org" is signed by the unknown Certificate Authority "www.xxxxx.org". It is not possible to verify that this is a valid certificate.
/X/ Remember my choice for this certificate
Then select the main /Approve/ button.
Safari
-- Mac Version 4.1.3
'Safari can't verify the identity of the website www.xxxxx.org'
/Show Certificate/ /Cancel/ /Continue/
- select show certificate
- select Trust Setting
- select When using this certificate, /Always Trust/
- select /Continue/