- Jul 22, 2014
- 2,525
Mozilla Halts Firefox 65 Rollout Due to Insecure Certificate Errors
Mozilla has halted the automatic updates to Firefox 65 as users are unable to browse web sites due to certificate errors. These errors are being caused by conflicts between various antivirus program's HTTPS scanning and Firefox 65.
Firefox 65 was released this week and with it came numerous reports from users that when they visited safe web sites, they were shown an error by Firefox 65 that states Your Connection is not secure and that there is an issue with the HTTP Strict Transport Security (HSTS) of the site.
....
...
According to a Mozilla bug report, these errors are being caused by the web protection modules in antivirus software such as Avast, AVG, and Kaspersky. In order for an antivirus software to scan an encrypted SSL connection for malicious content it needs to add its own certificate to Mozilla's certificate store in order to perform a MiTM (Man-in-the-Middle) attack.
Due to this wide spread conflict, Mozilla QA Lead Ryan VanderMeulen has stated that Mozilla has halted the automatic update to Firefox 65 in Windows to avoid making the problem worse.
....
....
Mozilla has halted the automatic updates to Firefox 65 as users are unable to browse web sites due to certificate errors. These errors are being caused by conflicts between various antivirus program's HTTPS scanning and Firefox 65.
Firefox 65 was released this week and with it came numerous reports from users that when they visited safe web sites, they were shown an error by Firefox 65 that states Your Connection is not secure and that there is an issue with the HTTP Strict Transport Security (HSTS) of the site.
....
...
According to a Mozilla bug report, these errors are being caused by the web protection modules in antivirus software such as Avast, AVG, and Kaspersky. In order for an antivirus software to scan an encrypted SSL connection for malicious content it needs to add its own certificate to Mozilla's certificate store in order to perform a MiTM (Man-in-the-Middle) attack.
Due to this wide spread conflict, Mozilla QA Lead Ryan VanderMeulen has stated that Mozilla has halted the automatic update to Firefox 65 in Windows to avoid making the problem worse.
....
....