SSL renegotiation in Firefox 4

My bank uses client SSL certificates + a single-password token for authentication. Unfortunately, the latest Firefox gives me this error:


Secure Connection Failed

An error occurred during a connection to secure.example.com.

Renegotiation is not allowed on this SSL socket.

(Error code: ssl_error_renegotiation_not_allowed)

The page you are trying to view can not be shown because the authenticity of the received data could not be verified.
Please contact the web site owners to inform them of this problem. Alternatively, use the command found in the help menu to report this broken site.


A workaround, which I do not recommend, as pointed out here, is to set security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref from about:config to true.

A more correct solution would be to read up on the decision to disable the feature, and then just add your server to the security.ssl.renego_unrestricted_hosts configuration value instead.

Comments

  1. how to set security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref from about:config to true.??

    ReplyDelete
  2. It is not a good idea to do that as I say in the next paragraph. However, if you want to know - type about:config in the address bar and press enter. Ack the warning, then type "renego" in the Filter line, then double-click the setting and see the value changed from "false" to "true".

    ReplyDelete

Post a Comment

Popular posts from this blog

ADSL Router Model CT-5367 user and pass (VIVACOM)

Installing Gentoo with full disk encryption

FreeIPA cluster with containers