Just upgraded to FF 42 X64, now I can not access https sites

By jnelsoninjax
in Web Browser Discussion & Support

 Share

Recommended Posts

Grand Master

The_Decryptor Veteran

Posted
  • Veteran
Posted (edited)

I bet its your AV, do you have TLS/HTTPS scanning enabled?

To actually scan secure traffic, your AV has to break the security of the connection and fakes it for the browser to appear as if it's secure. If it doesn't know how to interact with 64bit Firefox, it can't lie to the browser, and the browser will see the connection is insecure. If that's the case, the only reason it worked with Cyberfox was because it's a 3rd party build, and it probably didn't detect it as a browser.

Edit: Yeah, pretty sure it's that. Firefox is complaining that the certificate for YouTube doesn't chain to a built in root, so either your certificate store is entirely busted, or the AV hasn't installed their root certificate.

  • jnelsoninjax
  • Like 1
Mentor

Night Prowler

Posted
Posted (edited)

If you are using Adguard uncheck 'Filter HTTPS Protocol', and all is good. I'm guessing any AV that has a similar switch will need to be neutralized.

Remember if this is the new 64bit FF that some plugins might not work. A registered version of RoboForm when used indicates that RoboForm needs to be registered. Looks like an update is needed?

Grand Master

jnelsoninjax

Posted
  • Author
Posted

I bet its your AV, do you have TLS/HTTPS scanning enabled?

To actually scan secure traffic, your AV has to break the security of the connection and fakes it for the browser to appear as if it's secure. If it doesn't know how to interact with 64bit Firefox, it can't lie to the browser, and the browser will see the connection is insecure. If that's the case, the only reason it worked with Cyberfox was because it's a 3rd party build, and it probably didn't detect it as a browser.

Edit: Yeah, pretty sure it's that. Firefox is complaining that the certificate for YouTube doesn't chain to a built in root, so either your certificate store is entirely busted, or the AV hasn't installed their root certificate.

That was it. Disabled Private Browsing within Kaspesky and suddenly everything works! :D

Grand Master

Boo Berry

Posted
Posted

If you are using Adguard uncheck 'Filter HTTPS Protocol', and all is good. I'm guessing any AV that has a similar switch will need to be neutralized.

No need, just follow this tutorial to manually re-import Adguard's certificate and it works fine.

https://kb.adguard.com/index.php?/Russian/Knowledgebase/Article/View/54/10/connection-is-not-trusted---firefox

Grand Master

The_Decryptor Veteran

Posted
  • Veteran
Posted

Personally I'd avoid using anything that breaks TLS connections, even if it's for a "good" cause.

It breaks stuff like HPKP in the browser, so if somebody is actually performing a MITM attack and your AV/etc. doesn't specifically check for that (By having a strict HPKP implementation, etc.), it'll hide those details from your browser entirely. And it's quite possible the interceptor doesn't support the same protocol versions and ciphers as your browser.

Grand Master

Obi-Wan Kenobi

Posted
Posted

As to adguard....I just received an update, and with adguard enabled, FF64 now displays https sites correctly, so I guess they fixed it. ;)

  • 2 weeks later...
Experienced

erpster3

Posted
Posted

it's Kaspersky antivirus/internet security software (any version).  I got that problem of Firefox not being able to access https sites because of Kaspersky [had that problem since Firefox 39].

Solution: either uninstall Kaspersky or follow the instructions in this Kaspersky forum page to import a "certificate" CER file into Firefox.  that made https sites like Google to function correctly in Firefox.

Mentor

Night Prowler

Posted
Posted (edited)

it's Kaspersky antivirus/internet security software (any version).  I got that problem of Firefox not being able to access https sites because of Kaspersky [had that problem since Firefox 39].

Solution: either uninstall Kaspersky or follow the instructions in this Kaspersky forum page to import a "certificate" CER file into Firefox.  that made https sites like Google to function correctly in Firefox.

Did you do this

 

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Microsoft outs Windows 11 KB5095093 with long list of new features

      By Jaybonaut · Posted

      This is listed as a preview in WU for me. I usually don't grab them as previews; what's your opinion on it so far?
    • Pale Moon 34.3.1

      By Copernic · Posted

      Pale Moon 34.3.1 by Razvan Serea Pale Moon is an Open Source, Goanna-based web browser available for Microsoft Windows, Linux and Android, focusing on efficiency and ease of use. Make sure to get the most out of your browser! Pale Moon offers you a browsing experience in a browser completely built from its own, independently developed source that has been forked off from Firefox/Mozilla code, with carefully selected features and optimizations to improve the browsers speed, resource use, stability and user experience, while offering full customization and a growing collection of extensions and themes to make the browser truly your own. Features: Optimized for modern processors Based on proprietary optimized layout engine (Goanna) Safe: forked from mature Mozilla code and regularly updated Secure: Additional security features and security-aware development Supported by our user community, and fully non-profit Familiar, efficient, fully customizable interface Support for full themes: total freedom over any elements design Support for easily-created lightweight themes (skins) Smooth and speedy page drawing and script processing Increased stability: experience fewer browser crashes Support for many Firefox extensions Support for a growing number of Pale Moon exclusive extensions Extensive and growing support for HTML5 and CSS3 Many customization and configuration options Pale Moon 34.3.1 changelog: Pale Moon will now exclude local resources from CSP checks, aligning it with the rest of CSP handling. Fixed an issue where the devtools JSON viewer would, in some cases, make erroneous requests to remote servers. Updated libpng to 1.6.58+apng. Updated NSS to 3.90.12 (UXP), addressing multiple security issues. Fixed several intermittent and rare crashes. Security issues addressed: CVE-2026-12318 (CWE-125), CVE-2026-12322, CVE-2026-12292 (DiD), and multiple other issues that did not have a CVE designation at the time of patching. Download: Pale Moon (64-bit) | Portable 64-bit | ~40.0 MB (Freeware) Download: Pale Moon (32-bit) | Portable 32-bit Links: Pale Moon Homepage | Add-ons | Themes | Extensions | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • Windows 11 is now five years old

      By MtnDewCodeRedFreak · Posted

      Onwards to Windows 12 then lol.
    • ABSTRACT//AWESOME//WALLPAPERS - made by me!

      By bogo24dk · Posted

      Nice
    • I restored the default settings to Secure Boot. Big mistake

      By Taliseian · Posted

      There is a long thread (128pgs and counting) that I've been following over at ElevenForums that has a method for updating Secure Boot even if there is no BIOS upgrade. I've used this method and had zero issues. NOTE:  I do not take any responsibility if this or any other Secure Boot method bricks your system -- YMMV!  Read carefully before using!

  • Recent Achievements

    • Grand Master
      Jaybonaut went up a rank
      Grand Master
    • One Year In
      Philsl earned a badge
      One Year In
    • Dedicated
      Scoobystu earned a badge
      Dedicated
    • First Post
      Tom Schmidt earned a badge
      First Post
    • One Month Later
      D0nn13 earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      425
    2. 2
      +Edouard
      177
    3. 3
      PsYcHoKiLLa
      124
    4. 4
      Michael Scrip
      77
    5. 5
      Xenon
      76
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!