On Saturday 05 Sep 2015 02:08:47 Fernando Rodriguez wrote: > On Saturday, September 05, 2015 1:05:06 AM lee wrote: > > In this case, I happen to have full physical access to the server and > > thus to the certificate stored on it. This is not the case for, let's > > say, an employee checking his work-email from home whom I might give the > > login-data on the phone and instruct to add an exception when the dialog > > to do so pops up when they are trying to connect. > > As a workaround you can create your own CA cert. I tested with a windows > self- signed cert (I guess the correct term is self-issued) and the > openssl command will show two certs. The second is the CA. > > http://datacenteroverlords.com/2012/03/01/creating-your-own-ssl-certificate > -authority/
lee, on my FF I can import a self-signed certificate when I go to: about:preferences#advanced and then select the 'Servers' tab. After I import it I can select it and click on the 'Add Exception' button at the bottom of the tab. Enter the http address of the server and FF should go and fetch it afresh when you click on 'Get Certificate', then tick 'Permanently store this exception' and 'Confirm Security Exception'. These buttons will be greyed out if do not download the certificate or if I am running FF in Private Browsing mode. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.