The Firing Line Forums - View Single Post - TFL and SSL ("invalid certificate" messages)

**Mike Irwin** · March 28, 2009, 02:09 PM

Well that's a bummer.

I just forced this by typing in https and the TFL site name. Got the warning splash screen and worked my way through adding a permanent exception.

I think I understand Mozilla's reasons for doing this, as hinted at in the one splash screen... "Legitimate banks," and e-commerce sites. They're worried about someone getting into a malicious financial spoof site and having their account numbers and passwords harvested and or otherwise having their identity compromised.

We're not an e-commerce site so the risk of something like that happening is non-existent.

It would be nice if Firefox expanded their warnings for when something like this would and would not pose a serious risk.

March 28, 2009, 02:09 PM	#7
Mike Irwin Staff Join Date: April 13, 2000 Location: Northern Virginia Posts: 41,390	Well that's a bummer. I just forced this by typing in https and the TFL site name. Got the warning splash screen and worked my way through adding a permanent exception. I think I understand Mozilla's reasons for doing this, as hinted at in the one splash screen... "Legitimate banks," and e-commerce sites. They're worried about someone getting into a malicious financial spoof site and having their account numbers and passwords harvested and or otherwise having their identity compromised. We're not an e-commerce site so the risk of something like that happening is non-existent. It would be nice if Firefox expanded their warnings for when something like this would and would not pose a serious risk. __________________ "The gift which I am sending you is called a dog, and is in fact the most precious and valuable possession of mankind" -Theodorus Gaza Baby Jesus cries when the fat redneck doesn't have military-grade firepower.