>”New SSL error pages: clearer and stricter error pages are used when Firefox encounters an invalid SSL certificate
– From http://www.mozilla.com/en-US/firefox/3.0b2/releasenotes/

In random free software sites I visit this breaks (a shortcut on their site):

When I specify https myself it breaks:

  • https://dev.deluge-torrent.org/
    self signed and only valid for web3.webfaction.com, odd
  • https://gnome.org/ & all other *.gnome.org I tested
    self signed and only valid for localhost.localdomain., ouch
  • https://nouveau.freedesktop.org/wiki/
    self signed and only valid for bugs.freedesktop.org
  • https://192.168.1.something
    self signed, only valid for OpenWRT. and expired in 2001, Oops..

On a related note launchpad.net earns bonus points being the only website that defaults to https on EVERY page and doesn’t look like it even supports http. This is essential for a site like launchpad.net.

If you find any more, I’d be glad to add them to this list. Or maybe making a wiki page somewhere would be better…

Think this is Firefox being to strict? A real problem (misconfiguration) with the site? Or just me being too paranoid?

Leave a Reply

Your email address will not be published. Required fields are marked *