Re: How to ignore "This Connection is Untrusted"

[Frank-Rainer Grahl]

> SeaMonkey is responsible for perhaps one percent of all site visits worldwide,

0.1% according to latest stats.

> and that is by rounding UP. The solution to this problem would appear to be
> obvious. Fix the internals of the browser so that it has the same trusted
> connection compatibility as the others supplying the other 99+%.

The solution is to get rid of bad antivirus scanners which do not install the 
certificates it needs for https scanning into all installed browsers. Or 
better just leave this function out of the antivirus software because it 
actually may enable a man in the middle attack... There is nothing SeaMonkey 
can do here.


FRG

Roger Fink wrote:

On 7/30/2018 11:46 AM, Richard Owlett wrote:

I was on a site I personally trust.
It linked to https://xyz.com .
I clicked on the link.
I received a [evidently SeaMonkey generated] message stating:

This Connection is Untrusted

You have asked SeaMonkey to connect securely to xyz.com, but we can't
confirm that your connection is secure. ...


I clicked on "I Understand the Risks".
I was presented with another warning.
I clicked box labeled "Add exception".
I received a screen titled "Add Security Exception".
There was no *VISIBLE* check box to essentially go anyway.
!!! I *HAVE* seen such a message on a different machine with a
*DIFFERENT* screen geometry which allowed overriding the warnings. !!!

OBVIOUSLY there is a SeaMonkey bug "some where".
"Cost effective to pursue?" *I DOUBT IT* !

Once I've been warned, is there any way to *COERCE* overriding well
intentioned warnings

[I am using "Mozilla/5.0 (X11; Linux i686; rv:52.0) Gecko/20100101
Firefox/52.0 SeaMonkey/2.49.1" on a Debian Stretch system.]


This reminds me of the problem I had when I tried to install Kaspersky A/V, 
and I’d bet it’s not a coincidence. Kaspersky kept blocking SeaMonkey’s 
attempt to connect to ¾ of my bookmarks and I wound up uninstalling Kaspersky. 
My other browsers were unaffected.


SeaMonkey is responsible for perhaps one percent of all site visits worldwide, 
and that is by rounding UP. The solution to this problem would appear to be 
obvious. Fix the internals of the browser so that it has the same trusted 
connection compatibility as the others supplying the other 99+%.



___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: How to ignore "This Connection is Untrusted"

[Roger Fink]

On 7/30/2018 11:46 AM, Richard Owlett wrote:

I was on a site I personally trust.
It linked to https://xyz.com .
I clicked on the link.
I received a [evidently SeaMonkey generated] message stating:

This Connection is Untrusted

You have asked SeaMonkey to connect securely to xyz.com, but we can't
confirm that your connection is secure. ...


I clicked on "I Understand the Risks".
I was presented with another warning.
I clicked box labeled "Add exception".
I received a screen titled "Add Security Exception".
There was no *VISIBLE* check box to essentially go anyway.
!!! I *HAVE* seen such a message on a different machine with a
*DIFFERENT* screen geometry which allowed overriding the warnings. !!!

OBVIOUSLY there is a SeaMonkey bug "some where".
"Cost effective to pursue?" *I DOUBT IT* !

Once I've been warned, is there any way to *COERCE* overriding well
intentioned warnings

[I am using "Mozilla/5.0 (X11; Linux i686; rv:52.0) Gecko/20100101
Firefox/52.0 SeaMonkey/2.49.1" on a Debian Stretch system.]


This reminds me of the problem I had when I tried to install Kaspersky 
A/V, and I’d bet it’s not a coincidence. Kaspersky kept blocking 
SeaMonkey’s attempt to connect to ¾ of my bookmarks and I wound up 
uninstalling Kaspersky. My other browsers were unaffected.


SeaMonkey is responsible for perhaps one percent of all site visits 
worldwide, and that is by rounding UP. The solution to this problem 
would appear to be obvious. Fix the internals of the browser so that it 
has the same trusted connection compatibility as the others supplying 
the other 99+%.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

How to ignore "This Connection is Untrusted"

[Richard Owlett]

I was on a site I personally trust.
It linked to https://xyz.com .
I clicked on the link.
I received a [evidently SeaMonkey generated] message stating:

This Connection is Untrusted

You have asked SeaMonkey to connect securely to xyz.com, but we can't confirm 
that your connection is secure. ...


I clicked on "I Understand the Risks".
I was presented with another warning.
I clicked box labeled "Add exception".
I received a screen titled "Add Security Exception".
There was no *VISIBLE* check box to essentially go anyway.
!!! I *HAVE* seen such a message on a different machine with a 
*DIFFERENT* screen geometry which allowed overriding the warnings. !!!


OBVIOUSLY there is a SeaMonkey bug "some where".
"Cost effective to pursue?" *I DOUBT IT* !

Once I've been warned, is there any way to *COERCE* overriding well 
intentioned warnings


[I am using "Mozilla/5.0 (X11; Linux i686; rv:52.0) Gecko/20100101 
Firefox/52.0 SeaMonkey/2.49.1" on a Debian Stretch system.]

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[bbeau1126]

On Saturday, February 17, 2018 at 7:42:13 AM UTC+8, Smiles wrote:
> I keep getting this warning but can not choose to accept the error and 
> go forward
> 
> can anyone advise
> thanks

Uninstall browser and reinstall stable version
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: After installing seamonkey browser it said that "this connection is untrusted. You have asked SeaMonkey to connect securely to www.seamonkey-project.org but we cannot confirm that connection is se

[Frank-Rainer Grahl]

In 99% of all cases always the same. Virus scanner acts as a man in the middle 
and intercepts https traffic. You need to disable it or install the virus 
scanner certificate(s) in SeaMonkey. There were enough cases discussed here. 
Just use search or ask for support wrt. your virus scanner.


FRG


Paul Bergsagel wrote:

mode...@gmail.com wrote:
After installing seamonkey browser it said that "this connection is 
untrusted. You have asked SeaMonkey to connect securely to 
www.seamonkey-project.org but we cannot confirm that connection is secure. 
This website's identity can't be verivied.


I don't know if it would be safe to cancel the message and use SeaMonkey 
browser or if it would even work.

Please advise

I had something similar happen with a site claiming that the connection was 
untrusted and denied my connection. There is a solution which worked for me. 
Go to the SeaMonkey preferences->Privacy & Security->SSL/TLS. Under "SSL/TLS 
Protocol Versions make sure you check TLS 1.0  TSL 1.1 TLS 1.2. (note TSL 1.1 
will have a check mark but be greyed out).  Some web pages have not been 
updated to newer protocols and if the earlier protocols(TSL 1.0) have been 
disabled the site will not load and be flagged as untrustworthy.


I hope this helps.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: After installing seamonkey browser it said that "this connection is untrusted. You have asked SeaMonkey to connect securely to www.seamonkey-project.org but we cannot confirm that connection is se

[Paul Bergsagel]

mode...@gmail.com wrote:

After installing seamonkey browser it said that "this connection is untrusted. 
You have asked SeaMonkey to connect securely to www.seamonkey-project.org but we 
cannot confirm that connection is secure. This website's identity can't be verivied.

I don't know if it would be safe to cancel the message and use SeaMonkey 
browser or if it would even work.
Please advise

I had something similar happen with a site claiming that the connection 
was untrusted and denied my connection. There is a solution which worked 
for me. Go to the SeaMonkey preferences->Privacy & Security->SSL/TLS. 
Under "SSL/TLS Protocol Versions make sure you check TLS 1.0  TSL 1.1 
TLS 1.2. (note TSL 1.1 will have a check mark but be greyed out).  Some 
web pages have not been updated to newer protocols and if the earlier 
protocols(TSL 1.0) have been disabled the site will not load and be 
flagged as untrustworthy.


I hope this helps.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

After installing seamonkey browser it said that "this connection is untrusted. You have asked SeaMonkey to connect securely to www.seamonkey-project.org but we cannot confirm that connection is secure

[modemke]

After installing seamonkey browser it said that "this connection is untrusted. 
You have asked SeaMonkey to connect securely to www.seamonkey-project.org but 
we cannot confirm that connection is secure. This website's identity can't be 
verivied.

I don't know if it would be safe to cancel the message and use SeaMonkey 
browser or if it would even work.
Please advise
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Roger Fink]

On 2/18/2018 3:36 PM, Roger Fink wrote:

On 2/18/2018 3:05 PM, David E. Ross wrote:

On 2/18/2018 11:56 AM, Roger Fink wrote:

On 2/16/2018 6:42 PM, Smiles wrote:

I keep getting this warning but can not choose to accept the error and
go forward

can anyone advise
thanks


Regarding the warning, same problem here on about half the sites I have
bookmarked. "Technical Details" in most but not all cases displays an
option to override, but does not always give you a good result.

I think the anti-virus program you are using may have something to do
with this. I was using Avast with 2.49 and things were fine. The problem
only appeared after I changed to Kaspersky.

OT: IMO Kaspersky is a breath of fresh air compared to Avast and I
intend to keep using it.


 "Secure Connection"
Kaspersky had (or still has?) a problem relative to Web sites that are
secured.  This has been widely noted in news Web sites and in other
newsgroups.



Hi David. I just fixed this. Perhaps fixed belongs in quotes. Apparently
Kaspersky overheard you. Kaspersky has a user installable feature called
"Secure Connection" that has its own uninstaller in the control panel. I
didn't uninstall it but you can go into the settings and disable it,
which I did, and now things are normal. It is a mystery why it affects
SeaMonkey so heavily and it would be nice to keep it active in the other
browsers, but that's not currently possible. It does make one wonder
what the protection level against this threat is in Kaspersky compared
to other browsers that don't advertise it as a feature.


".in Kaspersky compared to other A/V PROGRAMS that"



___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Roger Fink]

On 2/18/2018 3:05 PM, David E. Ross wrote:

On 2/18/2018 11:56 AM, Roger Fink wrote:

On 2/16/2018 6:42 PM, Smiles wrote:

I keep getting this warning but can not choose to accept the error and
go forward

can anyone advise
thanks


Regarding the warning, same problem here on about half the sites I have
bookmarked. "Technical Details" in most but not all cases displays an
option to override, but does not always give you a good result.

I think the anti-virus program you are using may have something to do
with this. I was using Avast with 2.49 and things were fine. The problem
only appeared after I changed to Kaspersky.

OT: IMO Kaspersky is a breath of fresh air compared to Avast and I
intend to keep using it.


 "Secure Connection"
Kaspersky had (or still has?) a problem relative to Web sites that are
secured.  This has been widely noted in news Web sites and in other
newsgroups.



Hi David. I just fixed this. Perhaps fixed belongs in quotes. Apparently 
Kaspersky overheard you. Kaspersky has a user installable feature called 
"Secure Connection" that has its own uninstaller in the control panel. I 
didn't uninstall it but you can go into the settings and disable it, 
which I did, and now things are normal. It is a mystery why it affects 
SeaMonkey so heavily and it would be nice to keep it active in the other 
browsers, but that's not currently possible. It does make one wonder 
what the protection level against this threat is in Kaspersky compared 
to other browsers that don't advertise it as a feature.





___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[David E. Ross]

On 2/18/2018 11:56 AM, Roger Fink wrote:
> On 2/16/2018 6:42 PM, Smiles wrote:
>> I keep getting this warning but can not choose to accept the error and
>> go forward
>>
>> can anyone advise
>> thanks
> 
> Regarding the warning, same problem here on about half the sites I have 
> bookmarked. "Technical Details" in most but not all cases displays an 
> option to override, but does not always give you a good result.
> 
> I think the anti-virus program you are using may have something to do 
> with this. I was using Avast with 2.49 and things were fine. The problem 
> only appeared after I changed to Kaspersky.
> 
> OT: IMO Kaspersky is a breath of fresh air compared to Avast and I 
> intend to keep using it.
> 

Kaspersky had (or still has?) a problem relative to Web sites that are
secured.  This has been widely noted in news Web sites and in other
newsgroups.

-- 
David E. Ross


President Trump:  Please stop using Twitter.  We need
to hear your voice and see you talking.  We need to know
when your message is really your own and not your attorney's.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Roger Fink]

On 2/16/2018 6:42 PM, Smiles wrote:

I keep getting this warning but can not choose to accept the error and
go forward

can anyone advise
thanks


Regarding the warning, same problem here on about half the sites I have 
bookmarked. "Technical Details" in most but not all cases displays an 
option to override, but does not always give you a good result.


I think the anti-virus program you are using may have something to do 
with this. I was using Avast with 2.49 and things were fine. The problem 
only appeared after I changed to Kaspersky.


OT: IMO Kaspersky is a breath of fresh air compared to Avast and I 
intend to keep using it.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Smiles]

ok on checking my other profile
I see only a period on the right side which when clicked says untrusted 
site no pad lock

I see no certificate manager

using 2.48 on win7

Smiles wrote:

thank you David

David E. Ross wrote:

On 2/16/2018 3:42 PM, Smiles wrote:

I keep getting this warning but can not choose to accept the error and
go forward

can anyone advise
thanks



When I get this -- and I am sure the Web site is safe -- I use the
Certificate Manager to establish an exception by downloading the site
certificate.  Sometimes, I do this only for the current session; other
times, I mark it to be saved.

To get the Certificate Manager, right-click on the padlock near the
right end of the status bar at the bottom of the SeaMonkey window.  To
make an exception, select the Servers tab on the Certificate Manager
window.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Smiles]

thank you David

David E. Ross wrote:

On 2/16/2018 3:42 PM, Smiles wrote:

I keep getting this warning but can not choose to accept the error and
go forward

can anyone advise
thanks



When I get this -- and I am sure the Web site is safe -- I use the
Certificate Manager to establish an exception by downloading the site
certificate.  Sometimes, I do this only for the current session; other
times, I mark it to be saved.

To get the Certificate Manager, right-click on the padlock near the
right end of the status bar at the bottom of the SeaMonkey window.  To
make an exception, select the Servers tab on the Certificate Manager
window.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[David E. Ross]

On 2/16/2018 3:42 PM, Smiles wrote:
> I keep getting this warning but can not choose to accept the error and 
> go forward
> 
> can anyone advise
> thanks
> 

When I get this -- and I am sure the Web site is safe -- I use the
Certificate Manager to establish an exception by downloading the site
certificate.  Sometimes, I do this only for the current session; other
times, I mark it to be saved.

To get the Certificate Manager, right-click on the padlock near the
right end of the status bar at the bottom of the SeaMonkey window.  To
make an exception, select the Servers tab on the Certificate Manager
window.

-- 
David E. Ross


President Trump:  Please stop using Twitter.  We need
to hear your voice and see you talking.  We need to know
when your message is really your own and not your attorney's.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

This Connection is Untrusted

[Smiles]

I keep getting this warning but can not choose to accept the error and 
go forward


can anyone advise
thanks
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[MNeeks]

On Saturday, January 28, 2017 at 12:26:04 PM UTC-5, Richmond wrote:
> MNeeks  writes:
> 
> >> What virus scanner are you using? Maybe it installed a certificate
> >> for Firefox only and is snooping on the network traffic.
> >> 
> >> FRG
> >> 
> > I have Kaspersky and interestingly enough, just discovered that if I
> > pause protection SeaMonkey will load my normal websites with no
> > errors. Hmmm.
> 
> It might be worth checking some fingerprints to make sure there is no
> snooping.
> 
> https://www.grc.com/fingerprints.htm

I don't know what fingerprints are - and am a little afraid to go clicking on 
things...with all the craziness out there today. Thank you so much tho, the 
answer by Lem fixed the problem. Wow you guys are awesome for all the help!
Neeks
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[MNeeks]

On Saturday, January 28, 2017 at 1:48:47 PM UTC-5, Lemuel Johnson wrote:
> On 1/28/2017 10:57 AM, MNeeks wrote:
> >
> >> What virus scanner are you using? Maybe it installed a certificate for 
> >> Firefox
> >> only and is snooping on the network traffic.
> >>
> >> FRG
> >>
> > I have Kaspersky and interestingly enough, just discovered that if I pause 
> > protection SeaMonkey will load my normal websites with no errors. Hmmm.
> >
> When Kaspersky self-updates it doesn't reinstall its security certificate.
> 
> In SeaMonkey Preferences please go to Privacy & Security -> Certificates 
> -> Manage Certificates. Click the Authorities tab.
> There import (this is my Win 7 path, your path may be different):
> C:\ProgramData\Kaspersky Lab\AVP17.0.0\Data\Cert\(fake)Kaspersky 
> Anti-Virus Personal Root Certificate.cer
> 
> Lem Johnson

Thank you so much! That took care of the problem so quickly.  Thanks again!
Neeks
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[Lemuel Johnson]

On 1/28/2017 10:57 AM, MNeeks wrote:



What virus scanner are you using? Maybe it installed a certificate for Firefox
only and is snooping on the network traffic.

FRG


I have Kaspersky and interestingly enough, just discovered that if I pause 
protection SeaMonkey will load my normal websites with no errors. Hmmm.


When Kaspersky self-updates it doesn't reinstall its security certificate.

In SeaMonkey Preferences please go to Privacy & Security -> Certificates 
-> Manage Certificates. Click the Authorities tab.

There import (this is my Win 7 path, your path may be different):
C:\ProgramData\Kaspersky Lab\AVP17.0.0\Data\Cert\(fake)Kaspersky 
Anti-Virus Personal Root Certificate.cer


Lem Johnson
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[Lee]

On 1/28/17, Richmond  wrote:
> MNeeks  writes:
>
>>> What virus scanner are you using? Maybe it installed a certificate
>>> for Firefox only and is snooping on the network traffic.
>>>
>>> FRG
>>>
>> I have Kaspersky and interestingly enough, just discovered that if I
>> pause protection SeaMonkey will load my normal websites with no
>> errors. Hmmm.
>
> It might be worth checking some fingerprints to make sure there is no
> snooping.

Is there an easy way to compare the certificate store from FF & SM?

> https://www.grc.com/fingerprints.htm

  "Web browsers trust the identity assertion made by a remote web
   site when that site presents a certification of its identity that has
   been signed by a higher authority that the browser already trusts."

I used to work at a place that installed their own CA cert in the
Firefox certificate store so they could do 'data loss protection' (ie.
look at _everything_)  Firefox would happily accept the certs they
served up but SeaMonkey would complain about everything.

Lee
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[Richmond]

MNeeks  writes:

>> What virus scanner are you using? Maybe it installed a certificate
>> for Firefox only and is snooping on the network traffic.
>> 
>> FRG
>> 
> I have Kaspersky and interestingly enough, just discovered that if I
> pause protection SeaMonkey will load my normal websites with no
> errors. Hmmm.

It might be worth checking some fingerprints to make sure there is no
snooping.

https://www.grc.com/fingerprints.htm
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[MNeeks]

> What virus scanner are you using? Maybe it installed a certificate for 
> Firefox 
> only and is snooping on the network traffic.
> 
> FRG
> 
I have Kaspersky and interestingly enough, just discovered that if I pause 
protection SeaMonkey will load my normal websites with no errors. Hmmm. 

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: "This connection is untrusted"

[Frank-Rainer Grahl]

What virus scanner are you using? Maybe it installed a certificate for Firefox 
only and is snooping on the network traffic.


FRG

MNeeks wrote:

"This Connection is Untrusted" message only comes up in SeaMonkey, not on 
Firefox. All of a sudden I can't use SeaMonkey anymore to browse and it is my all time 
favorite browser.
The only thing that will load is the home page (yahoo.com)I have set up. I am 
running the newest SeaMonkey download and my OS is Windows 10 Home on my Lenovo 
Ideapad. Can anyone tell me what I am doing wrong? Thanks for any help.
Neeks



___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

"This connection is untrusted"

[MNeeks]

"This Connection is Untrusted" message only comes up in SeaMonkey, not on 
Firefox. All of a sudden I can't use SeaMonkey anymore to browse and it is my 
all time favorite browser. 
The only thing that will load is the home page (yahoo.com)I have set up. I am 
running the newest SeaMonkey download and my OS is Windows 10 Home on my Lenovo 
Ideapad. Can anyone tell me what I am doing wrong? Thanks for any help. 
Neeks 
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This connection is untrusted

[mozilla-lists . mbourne]

Paul B. Gallagher wrote:

mozilla-lists.mbou...@spamgourmet.com wrote:


Without that information, I can't be sure, but my first suspicion is
that the your new computer doesn't have the right date set, so
SeaMonkey thinks the certificates have expired or are not yet valid.
Make sure the date, time and time zone are set correctly -
right-click the clock in the taskbar, select "Adjust Date/Time" (or
similar); the details vary from one version of Windows to another,
but hopefully it should be fairly clear what to do from there.


His message header contains the following:

X-Received: by 10.140.96.137 with SMTP id k9mr66228qge.10.1435380087335;
Fri, 26 Jun 2015 21:41:27 -0700 (PDT)
...
Date: Fri, 26 Jun 2015 21:41:27 -0700 (PDT)

The first is set by the receiving mail server (I chose the first
recipient in the chain of custody), and the second by the sending
computer. Since they match and both specify a very recent date/time
(last night), it seems unlikely that there is a date/time issue. Unless,
of course, he wasn't sending from the problem computer.


Also in the headers from Rick's message:
User-Agent: G2/1.0
Which I think someone mentioned a few weeks ago means the message was 
posted via Google Groups, so the timestamps in the message are probably 
derived from Google's servers and not the date on his own computer.


And, as you say, there's the possibility he was sending from a computer 
other than the one exhibiting the problem anyway.


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This connection is untrusted

[Paul B. Gallagher]

mozilla-lists.mbou...@spamgourmet.com wrote:


Without that information, I can't be sure, but my first suspicion is
that the your new computer doesn't have the right date set, so
SeaMonkey thinks the certificates have expired or are not yet valid.
Make sure the date, time and time zone are set correctly -
right-click the clock in the taskbar, select "Adjust Date/Time" (or
similar); the details vary from one version of Windows to another,
but hopefully it should be fairly clear what to do from there.


His message header contains the following:

X-Received: by 10.140.96.137 with SMTP id k9mr66228qge.10.1435380087335; 
Fri, 26 Jun 2015 21:41:27 -0700 (PDT)

...
Date: Fri, 26 Jun 2015 21:41:27 -0700 (PDT)

The first is set by the receiving mail server (I chose the first 
recipient in the chain of custody), and the second by the sending 
computer. Since they match and both specify a very recent date/time 
(last night), it seems unlikely that there is a date/time issue. Unless, 
of course, he wasn't sending from the problem computer.


--
War doesn't determine who's right, just who's left.
--
Paul B. Gallagher
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This connection is untrusted

[mozilla-lists . mbourne]

Rick Daly wrote:

PLEASE! Can someone please help me? A few days ago I installed Seamonkey 2.33 
on a brand new computer. For a couple of days all worked fine. I was able to 
transfer all my bookmarks and passwords and settings from my old computer using 
MozBackup.

Then I started having problems with this "This connection is untrusted" 
message. It was hit and miss at first, now it stops me from doing virtually anything. I 
even had to add an exception for the Seamonkey Project website.


That message indicates something is up with the digital certificates 
used to set up a secure connection to the website. It's not a good idea 
to add exceptions without understanding what the problem is, 
particularly for important things like your bank.



I can't get into my banks, I can't even get to Youtube. Some strange looking 
screen pops up.

Seamonkey 2.33 is working fine on my older computer. I checked all the 
settings, comparing one to the other and nothing is different. What could have 
happened? I don't want to ditch Seamonkey. It's been my go to browser for 
years. I will NOT use Internet Explorer, and don't really like Chrome or 
anything else I've tried.


Are both computers using the same Internet connection?


Can anyone give me some guidance as to what the hell is going on and how, 
maybe, to fix it?


Click on "Technical Details" and it should give some more information. 
It may not mean much to you, but copy that text and paste it into a 
reply to this post.


Without that information, I can't be sure, but my first suspicion is 
that the your new computer doesn't have the right date set, so SeaMonkey 
thinks the certificates have expired or are not yet valid. Make sure the 
date, time and time zone are set correctly - right-click the clock in 
the taskbar, select "Adjust Date/Time" (or similar); the details vary 
from one version of Windows to another, but hopefully it should be 
fairly clear what to do from there.


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

This connection is untrusted

[Rick Daly]

PLEASE! Can someone please help me? A few days ago I installed Seamonkey 2.33 
on a brand new computer. For a couple of days all worked fine. I was able to 
transfer all my bookmarks and passwords and settings from my old computer using 
MozBackup.

Then I started having problems with this "This connection is untrusted" 
message. It was hit and miss at first, now it stops me from doing virtually 
anything. I even had to add an exception for the Seamonkey Project website.

I can't get into my banks, I can't even get to Youtube. Some strange looking 
screen pops up.

Seamonkey 2.33 is working fine on my older computer. I checked all the 
settings, comparing one to the other and nothing is different. What could have 
happened? I don't want to ditch Seamonkey. It's been my go to browser for 
years. I will NOT use Internet Explorer, and don't really like Chrome or 
anything else I've tried.

Can anyone give me some guidance as to what the hell is going on and how, 
maybe, to fix it? 
Thanks.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Rick Merrill]

Daniel wrote on 05/02/2015 7:00 AM:

On 02/05/15 00:08, Thee Chicago Wolf [MVP] wrote:

On Fri, 01 May 2015 20:52:35 +1000, Daniel 
wrote:


On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know
who issued the Cert. Any ideas how I find out what Cert Auth a website
might use??


I'm not seeing this warning message here on SM 2.33.1. Date/Time/Year
on your PC correct? Had one instance of a PC exhibiting this only to
find out the battery had died and CMOS lost time/date info and Windows
Time couldn't auto update.

- Thee Chicago Wolf [MVP]


The clock is a minute or two fast, but I wouldn't expect that to cause a 
problem!!


I find that message if I
http:www.somewhere.com
but not if I
https:www.somewhere.com

!


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 04/05/15 20:18, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 03/05/15 21:06, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 03/05/15 04:44, mozilla-lists.mbou...@spamgourmet.com wrote:

Further down in the Certificate Manager, there is a group of
certificates headed "The Go Daddy Group, Inc." (beginning "The", so
sorted under "T" not "G"!). The relevant ones I have there, which
appear
to be used when I connect to https://recruitment.wodonga.vic.gov.au/,
are:

Go Daddy Class 2 CA (Builtin Object Token)
   SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4






   SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4


27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

So they're both the same.


That's good. This is the built-in one which is used to sign the "Go
Daddy Root Certificate Authority - G2" certificate used by wodonga, so
I'd expect having that to be sufficient for all lower certificates in
the chain to be trusted.

Select this "Go Daddy Class 2 CA" certificate and click "Edit Trust".
For me, all 3 boxes are ticked (web sites, mail users and software
makers). What do you have?


They were all blank, and thing didn't work

They are all ticked and things do work!!

Yeah. Thank you.

I'll have to see if this carries over when I install the next Beta!!


That's great. Given »Q«'s comment about some distros not trusting
GoDaddy, I wonder if at some time in the past you (or someone else using
your computer) had seen and followed some advice to distrust the GoDaddy
root CAs. That would then carry over though updates, as the
customisation is stored in the profile. It would also explain them
appearing as "Software Security Device" (stored in the profile) rather
than "Builtin Object Token" (part of the installation). Having manually
set the trust settings, they should carry over to new versions.

Anyway, it's good to know it's working now ;o)

Mark.

I do recall, from some time in the past, hearing the GoDaddy was a real 
suspect site, so it certainly could have been me who was my own worst enemy.


Again, thanks to you both.

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Daniel wrote:

On 03/05/15 21:06, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 03/05/15 04:44, mozilla-lists.mbou...@spamgourmet.com wrote:

Further down in the Certificate Manager, there is a group of
certificates headed "The Go Daddy Group, Inc." (beginning "The", so
sorted under "T" not "G"!). The relevant ones I have there, which
appear
to be used when I connect to https://recruitment.wodonga.vic.gov.au/,
are:

Go Daddy Class 2 CA (Builtin Object Token)
   SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4





   SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4


27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

So they're both the same.


That's good. This is the built-in one which is used to sign the "Go
Daddy Root Certificate Authority - G2" certificate used by wodonga, so
I'd expect having that to be sufficient for all lower certificates in
the chain to be trusted.

Select this "Go Daddy Class 2 CA" certificate and click "Edit Trust".
For me, all 3 boxes are ticked (web sites, mail users and software
makers). What do you have?


They were all blank, and thing didn't work

They are all ticked and things do work!!

Yeah. Thank you.

I'll have to see if this carries over when I install the next Beta!!


That's great. Given »Q«'s comment about some distros not trusting 
GoDaddy, I wonder if at some time in the past you (or someone else using 
your computer) had seen and followed some advice to distrust the GoDaddy 
root CAs. That would then carry over though updates, as the 
customisation is stored in the profile. It would also explain them 
appearing as "Software Security Device" (stored in the profile) rather 
than "Builtin Object Token" (part of the installation). Having manually 
set the trust settings, they should carry over to new versions.


Anyway, it's good to know it's working now ;o)

Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Mason83 wrote:

On 01/05/2015 12:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/ 
however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)


http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
is not using SSL/TLS.


That's expected; http: URLs do not use SSL/TLS. However, it frames a 
https: page which does use SSL/TLS 
(https://recruitment.wodonga.vic.gov.au/).



https://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
is secured but uses an invalid certificate.

www.wodonga.vic.gov.au uses an invalid security certificate.

The certificate is not trusted because no issuer chain was provided.
The certificate is only valid for www.gocreative.com.au
The certificate expired on 16/12/2009 04:28.


I hadn't tried accessing that one as https:, but yes I see that too. It 
looks like the certificates are outdated and/or not set up properly on 
www.wodonga.vic.gov.au, but recruitment.wodonga.vic.gov.au is OK (when 
the GoDaddy CA is trusted).


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Mason83]

On 01/05/2015 12:20, Daniel wrote:
> I'm currently unemployed, so, to get me out and about, I'm looking to 
> apply for one of the positions here
> http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/ 
> however, 
> in SM 2.33B1, I get told that "This Connection is Untrusted" and it 
> offers to take me to my "Home Page instead" (and I should point out that 
> it actually takes me to the http://www.seamonkey-project.org/start/ page 
> rather than my "Home Page, maybe because I use a Home Group rather than 
> a Home page!!)

http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
is not using SSL/TLS.

https://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
is secured but uses an invalid certificate.

www.wodonga.vic.gov.au uses an invalid security certificate.

The certificate is not trusted because no issuer chain was provided.
The certificate is only valid for www.gocreative.com.au
The certificate expired on 16/12/2009 04:28.


Certificate "www.gocreative.com.au"
Certificate:
Version:
Version 3
Serial Number:
05:1D:6E:1A:C1:16:0B:2E:AB:10:28:6E:BB:38:C1:87
Certificate Signature Algorithm:
PKCS #1 SHA-1 With RSA Encryption
Issuer:
E = server-ce...@thawte.com
CN = Thawte Server CA
OU = Certification Services Division
O = Thawte Consulting cc
L = Cape Town
ST = Western Cape
C = ZA
Validity:
Not Before:
17/12/2007 04:28:46
(17/12/2007 03:28:46 GMT)
Not After:
16/12/2009 04:28:46
(16/12/2009 03:28:46 GMT)
Subject:
CN = www.gocreative.com.au
OU = Thawte SSL123 certificate
OU = Go to https://www.thawte.com/repository/index.html
OU = Domain Validated
O = www.gocreative.com.au
Subject Public Key Info:
Subject Public Key Algorithm:
PKCS #1 RSA Encryption
Subject's Public Key:
Modulus (1024 bits):
9d 9b a4 89 3d 9d eb a6 ec e5 04 b7 0a 42 fa 8c 
35 5e 3e 38 86 c6 d9 59 03 68 bb 10 ba 43 bd eb 
70 66 46 21 3c 35 74 29 cb fc 4b eb 81 38 be 33 
ab 64 3a 2c 0d 4f e4 18 ed 0b e4 f5 55 80 bd 85 
56 a9 b8 14 d5 67 62 9a 06 9f 34 24 59 ab a1 30 
9a dd 6e a8 06 f7 10 49 0f f3 3e 40 07 85 56 97 
65 87 39 f0 86 b4 09 a3 c1 21 4a d5 0b 00 91 75 
e5 54 a7 ba 79 fd 70 ec 55 38 e2 b5 89 1f 46 9f 
Exponent (24 bits):
65537
Extensions:
Extended Key Usage:
Not Critical
TLS Web Server Authentication (1.3.6.1.5.5.7.3.1)
TLS Web Client Authentication (1.3.6.1.5.5.7.3.2)
Authority Information Access:
Not Critical
OCSP: URI: http://ocsp.thawte.com
Certificate Basic Constraints:
Critical
Is not a Certificate Authority
Certificate Signature Algorithm:
PKCS #1 SHA-1 With RSA Encryption
Certificate Signature Value:
Size: 128 Bytes / 1024 Bits
5e 27 2b d8 37 d6 b5 3c 10 9d 60 ad 8c 1c 46 a9 
68 a5 8f f2 b3 0d a5 14 9f 6e a0 8c 34 74 2b bf 
18 f9 20 7b b7 62 cd 30 54 d3 f7 36 1f a2 0e d1 
ed 82 b6 91 20 5c 42 86 56 1b 99 4b a8 1f 22 64 
45 0c 41 8b 5c 79 09 83 70 62 b7 d0 b2 ce 5d e5 
a9 87 d9 c5 48 40 a7 0f 12 4f 7f d3 7e 87 4d 53 
5b 5d c6 5a 00 65 26 79 5b 27 d5 9c b8 67 13 68 
4c 47 27 09 83 47 54 ec c9 58 a5 87 18 c8 18 5a 
-BEGIN CERTIFICATE-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-END CERTIFICATE-


Regards.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 03/05/15 21:06, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 03/05/15 04:44, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy &
Security > Certificates > Manage Certificates > Authorities. For me,
GoDaddy.com, Inc. is listed there, with a "root certificate authority"
and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that includes
a "Go Daddy Root Certificate Authority - G2" which is listed as a
"Software Security Device".


The "Go Daddy Secure Certificate Authority - G2" certificate is signed
by a "Go Daddy Root Certificate - G2", which I assumed to be the same
one as appears in the certificate store. However, it appears that it's a
different certificate, with the same name, appearing elsewhere in the
Certificate Manager list, so I may have had you looking in the wrong
place (sorry for that!)

Further down in the Certificate Manager, there is a group of
certificates headed "The Go Daddy Group, Inc." (beginning "The", so
sorted under "T" not "G"!). The relevant ones I have there, which appear
to be used when I connect to https://recruitment.wodonga.vic.gov.au/,
are:

Go Daddy Class 2 CA (Builtin Object Token)
   SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4




   SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4


27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

So they're both the same.


That's good. This is the built-in one which is used to sign the "Go
Daddy Root Certificate Authority - G2" certificate used by wodonga, so
I'd expect having that to be sufficient for all lower certificates in
the chain to be trusted.

Select this "Go Daddy Class 2 CA" certificate and click "Edit Trust".
For me, all 3 boxes are ticked (web sites, mail users and software
makers). What do you have?


They were all blank, and thing didn't work

They are all ticked and things do work!!

Yeah. Thank you.

I'll have to see if this carries over when I install the next Beta!!

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Daniel wrote:

On 03/05/15 04:44, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy &
Security > Certificates > Manage Certificates > Authorities. For me,
GoDaddy.com, Inc. is listed there, with a "root certificate authority"
and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that includes
a "Go Daddy Root Certificate Authority - G2" which is listed as a
"Software Security Device".


The "Go Daddy Secure Certificate Authority - G2" certificate is signed
by a "Go Daddy Root Certificate - G2", which I assumed to be the same
one as appears in the certificate store. However, it appears that it's a
different certificate, with the same name, appearing elsewhere in the
Certificate Manager list, so I may have had you looking in the wrong
place (sorry for that!)

Further down in the Certificate Manager, there is a group of
certificates headed "The Go Daddy Group, Inc." (beginning "The", so
sorted under "T" not "G"!). The relevant ones I have there, which appear
to be used when I connect to https://recruitment.wodonga.vic.gov.au/,
are:

Go Daddy Class 2 CA (Builtin Object Token)
   SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4



   SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4


27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

So they're both the same.


That's good. This is the built-in one which is used to sign the "Go 
Daddy Root Certificate Authority - G2" certificate used by wodonga, so 
I'd expect having that to be sufficient for all lower certificates in 
the chain to be trusted.


Select this "Go Daddy Class 2 CA" certificate and click "Edit Trust". 
For me, all 3 boxes are ticked (web sites, mail users and software 
makers). What do you have?



Go Daddy Root Certificate Authority - G2 (Software Security Device)
   SHA-256: 3A:2F:BE:92:89:1E:57:FE:05:D5:70:87:F4:8E:73:0F:
17:E5:A5:F5:3E:F4:03:D6:18:E5:B7:4D:7A:7E:6E:CB


Note on mine, the Cert is not named as "-G2"
SHA-256
09:ED:6E:99:1F:C3:27:3D:8F:EA:31:7D:33:9C:02:04:18:61:97:35:49:CF:A6:E1:55:8F:41:1F:11:21:1A:A3



   SHA1: 34:0B:28:80:F4:46:FC:C0:4E:59:ED:33:F5:2B:3D:08:D6:24:29:64


7C:46:56:C3:06:1F:7F:4C:0D:67:B3:19:A8:55:F6:0E:BC:11:FC:44



Both different!!


That looks like one I have titled "Go Daddy Secure Certification 
Authority" (not "Root Certificate Authority").



Guess I might go the "Install Release" Route to see if that helps!


Since you seem to have the builtin certificates already, I'm not sure 
that would help. However, it may be worth trying SeaMonkey in safe mode 
(Help > Restart with Add-ons Disabled), and if that doesn't work try 
using a new profile. You don't have to delete the current profile - just 
use Tools > Switch Profile > Manage Profiles to create a new profile and 
use it; you can later switch back to your original profile in the same way.


If the wodonga site works in safe mode or with a new profile, it's 
probably something in your profile causing the problem.


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 03/05/15 04:44, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy &
Security > Certificates > Manage Certificates > Authorities. For me,
GoDaddy.com, Inc. is listed there, with a "root certificate authority"
and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that includes
a "Go Daddy Root Certificate Authority - G2" which is listed as a
"Software Security Device".


That's interesting. For me, that one is a "Builtin Object Token" (a
preinstalled root certificate). The "Go Daddy Secure..." one is a
"Software Security Device" type, indicating that it is either a
previously seen intermediate certificate, or a root certificate I've
added myself (I'm pretty sure it's the former in this case).

If you click "Edit Trust", are any of the options ticked there? On mine,
it is set to allow identifying web sites, and identifying software makers.

It might be worth installing a release build of SeaMonkey, rather than
your current beta version, to see if that makes any difference? I'm
currently using 2.33.1, which is newer than 2.33b1 anyway. While using
the latest beta is great for getting the latest features (and finding
any problems early), I'm not sure that there's any advantage in using an
outdated beta in preference to a newer release.


When I highlight that and click View, under the "General" tab there is
various information including "Organizational Unit (OU) >Not Part Of
Certificate> and "Serial Number" 00 and "Period of Validity" began on
01/09/09


That all matches the entry in my certificates.


and expires on 01/01/38


Mine shows expires on 31/12/2037, although that's probably because the
timestamp is adjusted for our local timezones.


and SHA1 and SHA-256 fingerprints


Do they match these?
SHA-256: 45:14:0B:32:47:EB:9C:C8:C5:B4:F0:D7:B5:30:91:F7:
  32:92:08:9E:6E:5A:63:E2:74:9D:D3:AC:A9:19:8E:DA


45:14:0B:32:47:EB:9C:C8:C5:B4:F0:D7:B5:30:91:F7:32:92:08:9E:6E:5A:63:E2:74:9D:D3:AC:A9:19:8E:DA


SHA1: 47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B


47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B

so they both begin and end the same, so that's good


On the "Details" tab, there are many "Certificate Fields" but all are
empty  including the "Validity" "Not Before" and "Not After" fields
which contained data on the other "General" tab.


That is odd. As »Q« mentioned, to see the values of a field, you have to
click on it in "Certificate Fields" list, and the value appears in the
"Field Value" section below. If that works, you'll probably see that the
Not After field is shown as some time on 01/01/2038 (this is in your
local time) followed by 31/12/2037 23:59:59 GMT.


I'm guessing the "secure" one might not be listed if you haven't
successfully visited a site using that certificate, but if the root one
isn't there that could be your problem.

Mark.


Yeap, you got that right, the "secure" one is not listed!


The "Go Daddy Secure Certificate Authority - G2" certificate is signed
by a "Go Daddy Root Certificate - G2", which I assumed to be the same
one as appears in the certificate store. However, it appears that it's a
different certificate, with the same name, appearing elsewhere in the
Certificate Manager list, so I may have had you looking in the wrong
place (sorry for that!)

Further down in the Certificate Manager, there is a group of
certificates headed "The Go Daddy Group, Inc." (beginning "The", so
sorted under "T" not "G"!). The relevant ones I have there, which appear
to be used when I connect to https://recruitment.wodonga.vic.gov.au/, are:

Go Daddy Class 2 CA (Builtin Object Token)
   SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4


   SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4


27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

So they're both the same.


Go Daddy Root Certificate Authority - G2 (Software Security Device)
   SHA-256: 3A:2F:BE:92:89:1E:57:FE:05:D5:70:87:F4:8E:73:0F:
17:E5:A5:F5:3E:F4:03:D6:18:E5:B7:4D:7A:7E:6E:CB


Note on mine, the Cert is not named as "-G2"
SHA-256 
09:ED:6E:99:1F:C3:27:3D:8F:EA:31:7D:33:9C:02:04:18:61:97:35:49:CF:A6:E1:55:8F:41:1F:11:21:1A:A3



   SHA1: 34:0B:28:80:F4:46:FC:C0:4E:59:ED:33:F5:2B:3D:08:D6:24:29:64


7C:46:56:C3:06:1F:7F:4C:0D:67:B3:19:A8:55:F6:0E:BC:11:FC:44


Do you have either or both of these?

Mark.


Both different!!

Guess I might go the "Install Release" Route to see if that helps!

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/2010

Re: This Connection is Untrusted

[Daniel]

On 03/05/15 02:40, »Q« wrote:

In ,
Daniel  wrote:


On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy
& Security > Certificates > Manage Certificates > Authorities. For
me, GoDaddy.com, Inc. is listed there, with a "root certificate
authority" and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that
includes a "Go Daddy Root Certificate Authority - G2" which is listed
as a "Software Security Device".

When I highlight that and click View, under the "General" tab there
is various information including "Organizational Unit (OU) >Not Part
Of
Certificate> and "Serial Number" 00 and "Period of Validity" began on
01/09/09 and expires on 01/01/38 and SHA1 and SHA-256 fingerprints


At the top of that "General" tab, does it say this? :

This certificate has been verified for the following uses:
SSL Certificate Authority


See my reply to your other post.


On the "Details" tab, there are many "Certificate Fields" but all are
empty  including the "Validity" "Not Before" and "Not After"
fields which contained data on the other "General" tab.


On the "Details" tab, make sure you're looking in the right place.
Clicking on, e.g., "Not Before" should cause the field info to appear
well below where the "Not Before" appears.


Yeap, you're right, when I select one of the "Certificate Fields", its 
value appears in the "Field Value" section of the screen.

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 03/05/15 02:31, »Q« wrote:

In ,
Daniel  wrote:


On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:



Look under Edit > Preferences > Privacy
& Security > Certificates > Manage Certificates > Authorities. For
me, GoDaddy.com, Inc. is listed there, with a "root certificate
authority" and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that
includes a "Go Daddy Root Certificate Authority - G2" which is listed
as a "Software Security Device".

When I highlight that and click View, under the "General" tab there
is various information


At the top of that "General" tab, does it say this? :

This certificate has been verified for the following uses:
SSL Certificate Authority

.
No, Q, it does not, it says

"Could not verify this certificate because the issuer is unknown."

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Daniel wrote:

On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy &
Security > Certificates > Manage Certificates > Authorities. For me,
GoDaddy.com, Inc. is listed there, with a "root certificate authority"
and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that includes
a "Go Daddy Root Certificate Authority - G2" which is listed as a
"Software Security Device".


That's interesting. For me, that one is a "Builtin Object Token" (a 
preinstalled root certificate). The "Go Daddy Secure..." one is a 
"Software Security Device" type, indicating that it is either a 
previously seen intermediate certificate, or a root certificate I've 
added myself (I'm pretty sure it's the former in this case).


If you click "Edit Trust", are any of the options ticked there? On mine, 
it is set to allow identifying web sites, and identifying software makers.


It might be worth installing a release build of SeaMonkey, rather than 
your current beta version, to see if that makes any difference? I'm 
currently using 2.33.1, which is newer than 2.33b1 anyway. While using 
the latest beta is great for getting the latest features (and finding 
any problems early), I'm not sure that there's any advantage in using an 
outdated beta in preference to a newer release.



When I highlight that and click View, under the "General" tab there is
various information including "Organizational Unit (OU) >Not Part Of
Certificate> and "Serial Number" 00 and "Period of Validity" began on
01/09/09


That all matches the entry in my certificates.


and expires on 01/01/38


Mine shows expires on 31/12/2037, although that's probably because the 
timestamp is adjusted for our local timezones.



and SHA1 and SHA-256 fingerprints


Do they match these?
SHA-256: 45:14:0B:32:47:EB:9C:C8:C5:B4:F0:D7:B5:30:91:F7:
 32:92:08:9E:6E:5A:63:E2:74:9D:D3:AC:A9:19:8E:DA
SHA1: 47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B


On the "Details" tab, there are many "Certificate Fields" but all are
empty  including the "Validity" "Not Before" and "Not After" fields
which contained data on the other "General" tab.


That is odd. As »Q« mentioned, to see the values of a field, you have to 
click on it in "Certificate Fields" list, and the value appears in the 
"Field Value" section below. If that works, you'll probably see that the 
Not After field is shown as some time on 01/01/2038 (this is in your 
local time) followed by 31/12/2037 23:59:59 GMT.



I'm guessing the "secure" one might not be listed if you haven't
successfully visited a site using that certificate, but if the root one
isn't there that could be your problem.

Mark.


Yeap, you got that right, the "secure" one is not listed!


The "Go Daddy Secure Certificate Authority - G2" certificate is signed 
by a "Go Daddy Root Certificate - G2", which I assumed to be the same 
one as appears in the certificate store. However, it appears that it's a 
different certificate, with the same name, appearing elsewhere in the 
Certificate Manager list, so I may have had you looking in the wrong 
place (sorry for that!)


Further down in the Certificate Manager, there is a group of 
certificates headed "The Go Daddy Group, Inc." (beginning "The", so 
sorted under "T" not "G"!). The relevant ones I have there, which appear 
to be used when I connect to https://recruitment.wodonga.vic.gov.au/, are:


Go Daddy Class 2 CA (Builtin Object Token)
  SHA-256: C3:84:6B:F2:4B:9E:93:CA:64:27:4C:0E:C6:7C:1E:CC:
   5E:02:4F:FC:AC:D2:D7:40:19:35:0E:81:FE:54:6A:E4
  SHA1: 27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

Go Daddy Root Certificate Authority - G2 (Software Security Device)
  SHA-256: 3A:2F:BE:92:89:1E:57:FE:05:D5:70:87:F4:8E:73:0F:
   17:E5:A5:F5:3E:F4:03:D6:18:E5:B7:4D:7A:7E:6E:CB
  SHA1: 34:0B:28:80:F4:46:FC:C0:4E:59:ED:33:F5:2B:3D:08:D6:24:29:64

Do you have either or both of these?

Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[»Q«]

In ,
Daniel  wrote:

> On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:
> > Daniel wrote:
> >> Entering "godaddy" in the search box of the SM data manager gets an
> >> empty Domain field ... do I need something in there??
> >
> > It probably won't be there. Look under Edit > Preferences > Privacy
> > & Security > Certificates > Manage Certificates > Authorities. For
> > me, GoDaddy.com, Inc. is listed there, with a "root certificate
> > authority" and a "secure certificate authority".
> 
> At this point, I see I've got a GoDaddy.com, Inc. listing that
> includes a "Go Daddy Root Certificate Authority - G2" which is listed
> as a "Software Security Device".
> 
> When I highlight that and click View, under the "General" tab there
> is various information including "Organizational Unit (OU) >Not Part
> Of 
> Certificate> and "Serial Number" 00 and "Period of Validity" began on 
> 01/09/09 and expires on 01/01/38 and SHA1 and SHA-256 fingerprints

At the top of that "General" tab, does it say this? :

This certificate has been verified for the following uses:
SSL Certificate Authority

> On the "Details" tab, there are many "Certificate Fields" but all are 
> empty  including the "Validity" "Not Before" and "Not After"
> fields which contained data on the other "General" tab.

On the "Details" tab, make sure you're looking in the right place.
Clicking on, e.g., "Not Before" should cause the field info to appear
well below where the "Not Before" appears.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[»Q«]

In ,
Daniel  wrote:

> On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

> > Look under Edit > Preferences > Privacy
> > & Security > Certificates > Manage Certificates > Authorities. For
> > me, GoDaddy.com, Inc. is listed there, with a "root certificate
> > authority" and a "secure certificate authority".
> 
> At this point, I see I've got a GoDaddy.com, Inc. listing that
> includes a "Go Daddy Root Certificate Authority - G2" which is listed
> as a "Software Security Device".
> 
> When I highlight that and click View, under the "General" tab there
> is various information 

At the top of that "General" tab, does it say this? :

This certificate has been verified for the following uses:
SSL Certificate Authority





___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 02/05/15 21:33, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy &
Security > Certificates > Manage Certificates > Authorities. For me,
GoDaddy.com, Inc. is listed there, with a "root certificate authority"
and a "secure certificate authority".


At this point, I see I've got a GoDaddy.com, Inc. listing that includes 
a "Go Daddy Root Certificate Authority - G2" which is listed as a 
"Software Security Device".


When I highlight that and click View, under the "General" tab there is 
various information including "Organizational Unit (OU) >Not Part Of 
Certificate> and "Serial Number" 00 and "Period of Validity" began on 
01/09/09 and expires on 01/01/38 and SHA1 and SHA-256 fingerprints


On the "Details" tab, there are many "Certificate Fields" but all are 
empty  including the "Validity" "Not Before" and "Not After" fields 
which contained data on the other "General" tab.



I'm guessing the "secure" one might not be listed if you haven't
successfully visited a site using that certificate, but if the root one
isn't there that could be your problem.

Mark.


Yeap, you got that right, the "secure" one is not listed!

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Daniel wrote:

Entering "godaddy" in the search box of the SM data manager gets an
empty Domain field ... do I need something in there??


It probably won't be there. Look under Edit > Preferences > Privacy & 
Security > Certificates > Manage Certificates > Authorities. For me, 
GoDaddy.com, Inc. is listed there, with a "root certificate authority" 
and a "secure certificate authority".


I'm guessing the "secure" one might not be listed if you haven't 
successfully visited a site using that certificate, but if the root one 
isn't there that could be your problem.


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 02/05/15 06:16, mozilla-lists.mbou...@spamgourmet.com wrote:

Daniel wrote:

On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/


however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out
that
it actually takes me to the http://www.seamonkey-project.org/start/
page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in
Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know
who issued the Cert. Any ideas how I find out what Cert Auth a website
might use??


If you click on "Technical Details", it should show why the certificate
was rejected. e.g. when I go to https://localhost/ (on my machine,
running a web server for testing) I get:

The certificate is not trusted because it is self-signed.
The certificate is only valid for hostname
The certificate expired on 04/01/2014 19:21. The current time is
01/05/2015 20:56.

Which tells me the site is using a self-signed certificate, which is
only valid when addressed as "hostname" (not as "localhost") and expired
over a year ago. Not a good sign if that's coming from a usually
reputable website ;o)

If you click on "I Understand the Risks", and then "Add Exception...",
you get to see a few more details before deciding whether to actually
add an exception. In the resulting dialog, click "Get Certificate", then
"View". On the "Details" tab, you should be able to trace through the
intermediate certificates to the root authority. Click "Cancel" to close
those dialogs (unless you want to add an exception to use the site,
which isn't recommended unless you understand why the error is occurring
- particularly as no-one else is seeing a problem).

Mark.


Thanks for this, Mark, and when I look at the Technical Details I see

Technical Details

recruitment.wodonga.vic.gov.au uses an invalid security certificate. The 
certificate is not trusted because the issuer certificate is unknown. 
(Error code: sec_error_unknown_issuer)


So why do my old FF and current'ish Konqueror both work o.k.?? Are they 
not examining the certificate??


--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 02/05/15 06:05, »Q« wrote:

In <news:roydny41x7usx97inz2dnuu7-eudn...@mozilla.org>,
Daniel  wrote:


On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking
to apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
however,
in SM 2.33B1, I get told that "This Connection is Untrusted"



If I open that page in FF 24.2.0, no problem, it even works in
Konqueror 4.11.4!

Just not SM.

Anybody got any ideas??



Reading back through the thread, it would seem that I first need to
know who issued the Cert. Any ideas how I find out what Cert Auth a
website might use??


In general, you have to find the https URL and paste it into an address
bar.  If that doesn't work, you'd have to move on from browsers to other
tools, which are less easy to use but more flexible.

That page just encloses <https://recruitment.wodonga.vic.gov.au/> in a
frame, which is IMO is a useless, annoying obfuscation.  Open that URL
in one of the browsers that works to see that the issuer is "Go Daddy
Secure Certificate Authority - G2".

Trying to open <https://recruitment.wodonga.vic.gov.au/> in SeaMonkey
may reveal clues about whatever the problem is.

Do you get your SeaMonkey directly from Mozilla or from a repository
specific to your distro?  If it's from a repo, remind me what distro
you use.

I'm starting to suspect that some Debianish devs but not others find
GoDaddy objectionable and disable trusting it.  That's really just
speculation, but it would explain why others can't reproduce your
problem and why only one of your browsers is affected.


Thanks for trying, Q.

Clicking on your recruitment.wodonga links above still comes up with the 
"This connection is Untrusted" page.


Entering "godaddy" in the search box of the SM data manager gets an 
empty Domain field ... do I need something in there??


I get my Beta versions of SeaMonkey direct via the ftp site, 
http://ftp.mozilla.org/pub/mozilla.org/seamonkey/releases/2.33b1/contrib/


Just as well I've got the old Firefox and Konqueror that do get me to 
the site.


--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 02/05/15 00:08, Thee Chicago Wolf [MVP] wrote:

On Fri, 01 May 2015 20:52:35 +1000, Daniel 
wrote:


On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know
who issued the Cert. Any ideas how I find out what Cert Auth a website
might use??


I'm not seeing this warning message here on SM 2.33.1. Date/Time/Year
on your PC correct? Had one instance of a PC exhibiting this only to
find out the battery had died and CMOS lost time/date info and Windows
Time couldn't auto update.

- Thee Chicago Wolf [MVP]

The clock is a minute or two fast, but I wouldn't expect that to cause a 
problem!!


--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[mozilla-lists . mbourne]

Daniel wrote:

On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/

however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know
who issued the Cert. Any ideas how I find out what Cert Auth a website
might use??


If you click on "Technical Details", it should show why the certificate 
was rejected. e.g. when I go to https://localhost/ (on my machine, 
running a web server for testing) I get:

The certificate is not trusted because it is self-signed.
The certificate is only valid for hostname
The certificate expired on 04/01/2014 19:21. The current time is 01/05/2015 
20:56.
Which tells me the site is using a self-signed certificate, which is 
only valid when addressed as "hostname" (not as "localhost") and expired 
over a year ago. Not a good sign if that's coming from a usually 
reputable website ;o)


If you click on "I Understand the Risks", and then "Add Exception...", 
you get to see a few more details before deciding whether to actually 
add an exception. In the resulting dialog, click "Get Certificate", then 
"View". On the "Details" tab, you should be able to trace through the 
intermediate certificates to the root authority. Click "Cancel" to close 
those dialogs (unless you want to add an exception to use the site, 
which isn't recommended unless you understand why the error is occurring 
- particularly as no-one else is seeing a problem).


Mark.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[»Q«]

In <news:roydny41x7usx97inz2dnuu7-eudn...@mozilla.org>,
Daniel  wrote:

> On 01/05/15 20:38, Daniel wrote:
> > On 01/05/15 20:20, Daniel wrote:
> >> I'm currently unemployed, so, to get me out and about, I'm looking
> >> to apply for one of the positions here
> >> http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
> >> however,
> >> in SM 2.33B1, I get told that "This Connection is Untrusted" 

> >> If I open that page in FF 24.2.0, no problem, it even works in
> >> Konqueror 4.11.4!
> >>
> >> Just not SM.
> >>
> >> Anybody got any ideas??
 
> Reading back through the thread, it would seem that I first need to
> know who issued the Cert. Any ideas how I find out what Cert Auth a
> website might use??

In general, you have to find the https URL and paste it into an address
bar.  If that doesn't work, you'd have to move on from browsers to other
tools, which are less easy to use but more flexible.

That page just encloses <https://recruitment.wodonga.vic.gov.au/> in a
frame, which is IMO is a useless, annoying obfuscation.  Open that URL
in one of the browsers that works to see that the issuer is "Go Daddy
Secure Certificate Authority - G2".

Trying to open <https://recruitment.wodonga.vic.gov.au/> in SeaMonkey
may reveal clues about whatever the problem is.

Do you get your SeaMonkey directly from Mozilla or from a repository
specific to your distro?  If it's from a repo, remind me what distro
you use.

I'm starting to suspect that some Debianish devs but not others find
GoDaddy objectionable and disable trusting it.  That's really just
speculation, but it would explain why others can't reproduce your
problem and why only one of your browsers is affected.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[WaltS48]

Daniel wrote:

On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/

however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know
who issued the Cert. Any ideas how I find out what Cert Auth a website
might use??




Also no problem loading the page using SeaMonkey 2.33.1 release.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 01/05/15 20:38, Daniel wrote:

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/
however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??


Alright, now that my post has connected to a thread from last year, I'll
have a look through these posts and see if anything suggested works!!


Reading back through the thread, it would seem that I first need to know 
who issued the Cert. Any ideas how I find out what Cert Auth a website 
might use??


--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Daniel]

On 01/05/15 20:20, Daniel wrote:

I'm currently unemployed, so, to get me out and about, I'm looking to
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/ 
however,
in SM 2.33B1, I get told that "This Connection is Untrusted" and it
offers to take me to my "Home Page instead" (and I should point out that
it actually takes me to the http://www.seamonkey-project.org/start/ page
rather than my "Home Page, maybe because I use a Home Group rather than
a Home page!!)

If I open that page in FF 24.2.0, no problem, it even works in Konqueror
4.11.4!

Just not SM.

Anybody got any ideas??

Alright, now that my post has connected to a thread from last year, I'll 
have a look through these posts and see if anything suggested works!!


--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

This Connection is Untrusted

[Daniel]

I'm currently unemployed, so, to get me out and about, I'm looking to 
apply for one of the positions here
http://www.wodonga.vic.gov.au/about-us/careers-with-us/current-vacancies/ however, 
in SM 2.33B1, I get told that "This Connection is Untrusted" and it 
offers to take me to my "Home Page instead" (and I should point out that 
it actually takes me to the http://www.seamonkey-project.org/start/ page 
rather than my "Home Page, maybe because I use a Home Group rather than 
a Home page!!)


If I open that page in FF 24.2.0, no problem, it even works in Konqueror 
4.11.4!


Just not SM.

Anybody got any ideas??

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 
SeaMonkey/2.32 Build identifier: 20141218225909

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 
SeaMonkey/2.33 Build identifier: 20150215202114

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: Ref my computer problem accessing web sites fault This connection is Untrusted

[NoOp]

On 05/24/2014 03:22 PM, Lee wrote:
> comments in-line
> 
> On 5/24/14, NoOp  wrote:
>> On 05/24/2014 04:47 AM, Lee wrote:
>>> Well I think I found something!
>>>
>>> Could not verify this Certificate because the issuer is unknown
>>>
>>> Issued to
>>> Common Name (CN Name of bank
>>> Organization (O)DO-NOT-TRUST
>>> Organizational unit (OU)Created by http://www.fiddler2.com
>>> Serial Number   
>>> D5:45:43:f3:bbe2:56:A7:40:D2:83:OF:2A:99:4D:19
>>>
>>> Issued By
>>>
>>> Common Name (CN)DO_NOT_TRUST_FiddlerRoot
>>> Organization (0)DO_NOT_TRUST
>>> Organizational Unit (OU)Created by http://www.fiddler2.com
>>>
>>> Validity
>>> Issued On   5/13/2014
>>> Expires on  5/12/2024
>>>
>>> Fingerprints
>>> SHA1
>>> 16:E2:6D"E2:99:FD:CO:B8:54:3F:39:7d:80:C1:2D:26:F1:AA:25:57
>>> MDS Fingerprint A9:41:5e:3a:b4:8E:D8:D6:95:8D:609:5c:82:55:11:07
>>>
>>
>> Well... there is nothing nefarious about fiddler2.com itself. Fiddler is
>> a free web debugging proxy for any browser, system or platform.
>> Basically it's a developer's debugger tool. Just so 'Fiddler'
>> fiddler2.com doesn't get a bad rap in the archives:
>>
>> <http://www.telerik.com/fiddler>
>>   <http://www.telerik.com/fiddler#KeyFeatures>
>> <http://blogs.telerik.com/fiddler/posts/13-08-19/faq---certificates-in-fiddler>
> 
> Did I say anything bad about fiddler?  I didn't think I did, but ...

Are you lbray5...@bellsouth.net ? I think you are ler...@gmail.com.

Did you write msg: rnodny4kg7legx3onz2dnuvz_o6dn...@mozilla.org?
Newsgroups: mozilla.support.seamonkey
Subject: Re: Ref my computer problem accessing web sites fault This
connection
 is Untrusted
References: 
In-Reply-To: 

So unless you wrote that 'In-Reply-To' message then I reckon that you
are confused :-)



___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: Ref my computer problem accessing web sites fault This connection is Untrusted

[Lee]

comments in-line

On 5/24/14, NoOp  wrote:
> On 05/24/2014 04:47 AM, Lee wrote:
>> Well I think I found something!
>>
>> Could not verify this Certificate because the issuer is unknown
>>
>> Issued to
>> Common Name (CN  Name of bank
>> Organization (O) DO-NOT-TRUST
>> Organizational unit (OU)Created by http://www.fiddler2.com
>> Serial Number
>> D5:45:43:f3:bbe2:56:A7:40:D2:83:OF:2A:99:4D:19
>>
>> Issued By
>>
>> Common Name (CN) DO_NOT_TRUST_FiddlerRoot
>> Organization (0) DO_NOT_TRUST
>> Organizational Unit (OU)Created by http://www.fiddler2.com
>>
>> Validity
>> Issued On5/13/2014
>> Expires on   5/12/2024
>>
>> Fingerprints
>> SHA1 
>> 16:E2:6D"E2:99:FD:CO:B8:54:3F:39:7d:80:C1:2D:26:F1:AA:25:57
>> MDS Fingerprint  A9:41:5e:3a:b4:8E:D8:D6:95:8D:609:5c:82:55:11:07
>>
>
> Well... there is nothing nefarious about fiddler2.com itself. Fiddler is
> a free web debugging proxy for any browser, system or platform.
> Basically it's a developer's debugger tool. Just so 'Fiddler'
> fiddler2.com doesn't get a bad rap in the archives:
>
> 
>   
> 

Did I say anything bad about fiddler?  I didn't think I did, but ...

If we're going "for the record", I think the motivation of the person
installing the "man-in-the-middle" determines if the program is
malicious or not.  If the OP installed it, no, it's not malicious.
Anyone else - yeah, I'd say it's malicious.


> "By default, Fiddler intercepts insecure traffic (HTTP) but it can be
> configured to decrypt secure (HTTPS) traffic. In order to do so, the
> proxy executes a man-in-the-middle attack against the secure traffic; to
> achieve that, Fiddler must generate a root certificate and use that root
> certificate to generate multiple end-entity certificates, one for each
> HTTPS site which is being intercepted."
>
> You can see that it is used in real life:
> 
> "Below a screenshot of Fiddler showing the recorded drive-by infection,
> proofing that Yahoo was indeed infecting its visitors through a
> malicious iframe"
> 
> ...
>
> And the program itself doesn't contain any malware or virus:
> 
>
> So you apparently got this installed by something you did, downloaded,
> or someplace you visited on the web. It is possible that a piece of
> malware may be trying to use the Fiddler proxy debugger to intercept
> your traffic. But, if that is the case it didn't work very well as the
> Fiddler generated certs were detected and blocked by SeaMonkey. (the
> other Lee was spot on in determining that you had a proxy problem)
>
> 

If you didn't install Fiddler,
> You should run anti-malware & anti-virus checks to see if you can
> determine and eradicate whatever changed you to Fiddler proxy settings.

In other words, if you installed Fiddler & then forgot about it - no
problems.  Otherwise something bad happened & it'd be a Good Idea to
run the anti-malware / anti-virus / anti-whatever checks to see what
other bad things have been done to your machine & try to reverse it.

Once you've got it cleaned up, consider installing cert patrol & maybe
even request policy:
  https://addons.mozilla.org/en-US/seamonkey/addon/certificate-patrol/
  https://addons.mozilla.org/en-us/seamonkey/addon/requestpolicy/

Regards,
Lee
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: Ref my computer problem accessing web sites fault This connection is Untrusted

[NoOp]

On 05/24/2014 04:47 AM, Lee wrote:
> Well I think I found something!
> 
> Could not verify this Certificate because the issuer is unknown
> 
> Issued to
> Common Name (CN   Name of bank
> Organization (O)  DO-NOT-TRUST
> Organizational unit (OU)Created by http://www.fiddler2.com
> Serial Number D5:45:43:f3:bbe2:56:A7:40:D2:83:OF:2A:99:4D:19
> 
> Issued By
> 
> Common Name (CN)  DO_NOT_TRUST_FiddlerRoot
> Organization (0)  DO_NOT_TRUST
> Organizational Unit (OU)Created by http://www.fiddler2.com
> 
> Validity
> Issued On 5/13/2014
> Expires on5/12/2024
> 
> Fingerprints
> SHA1  
> 16:E2:6D"E2:99:FD:CO:B8:54:3F:39:7d:80:C1:2D:26:F1:AA:25:57
> MDS Fingerprint   A9:41:5e:3a:b4:8E:D8:D6:95:8D:609:5c:82:55:11:07
> 

Well... there is nothing nefarious about fiddler2.com itself. Fiddler is
a free web debugging proxy for any browser, system or platform.
Basically it's a developer's debugger tool. Just so 'Fiddler'
fiddler2.com doesn't get a bad rap in the archives:


  


"By default, Fiddler intercepts insecure traffic (HTTP) but it can be
configured to decrypt secure (HTTPS) traffic. In order to do so, the
proxy executes a man-in-the-middle attack against the secure traffic; to
achieve that, Fiddler must generate a root certificate and use that root
certificate to generate multiple end-entity certificates, one for each
HTTPS site which is being intercepted."

You can see that it is used in real life:

"Below a screenshot of Fiddler showing the recorded drive-by infection,
proofing that Yahoo was indeed infecting its visitors through a
malicious iframe"

...

And the program itself doesn't contain any malware or virus:


So you apparently got this installed by something you did, downloaded,
or someplace you visited on the web. It is possible that a piece of
malware may be trying to use the Fiddler proxy debugger to intercept
your traffic. But, if that is the case it didn't work very well as the
Fiddler generated certs were detected and blocked by SeaMonkey. (the
other Lee was spot on in determining that you had a proxy problem)



You should run anti-malware & anti-virus checks to see if you can
determine and eradicate whatever changed you to Fiddler proxy settings.







___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: Ref my computer problem accessing web sites fault This connection is Untrusted

[Lee]

On 5/24/14, Lee  wrote:
> Well I think I found something!

yeah - looks like you've got fiddler installed & it's intercepting all
of your https:// requests.

... or you're totally pwned, but I doubt a malicious actor would put
'DO-NOT-TRUST" as the org id in the cert.
... or a particularly inept (friend|relative|roommate) is messing with
your internet connection
... or ???

go to Edit / Preferences / Advanced / Proxies and make sure that
"Direct connection to the Internet" is selected.

Regards,
Lee

> Could not verify this Certificate because the issuer is unknown
>
> Issued to
> Common Name (CN   Name of bank
> Organization (O)  DO-NOT-TRUST
> Organizational unit (OU)Created by http://www.fiddler2.com
> Serial Number D5:45:43:f3:bbe2:56:A7:40:D2:83:OF:2A:99:4D:19
>
> Issued By
>
> Common Name (CN)  DO_NOT_TRUST_FiddlerRoot
> Organization (0)  DO_NOT_TRUST
> Organizational Unit (OU)Created by http://www.fiddler2.com
>
> Validity
> Issued On 5/13/2014
> Expires on5/12/2024
>
> Fingerprints
> SHA1  
> 16:E2:6D"E2:99:FD:CO:B8:54:3F:39:7d:80:C1:2D:26:F1:AA:25:57
> MDS Fingerprint   A9:41:5e:3a:b4:8E:D8:D6:95:8D:609:5c:82:55:11:07
> ___
> support-seamonkey mailing list
> support-seamonkey@lists.mozilla.org
> https://lists.mozilla.org/listinfo/support-seamonkey
>
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Ref my computer problem accessing web sites fault This connection is Untrusted

[Lee]

Well I think I found something!

Could not verify this Certificate because the issuer is unknown

Issued to
Common Name (CN Name of bank
Organization (O)DO-NOT-TRUST
Organizational unit (OU)Created by http://www.fiddler2.com
Serial Number   D5:45:43:f3:bbe2:56:A7:40:D2:83:OF:2A:99:4D:19

Issued By

Common Name (CN)DO_NOT_TRUST_FiddlerRoot
Organization (0)DO_NOT_TRUST
Organizational Unit (OU)Created by http://www.fiddler2.com

Validity
Issued On   5/13/2014
Expires on  5/12/2024

Fingerprints
SHA1
16:E2:6D"E2:99:FD:CO:B8:54:3F:39:7d:80:C1:2D:26:F1:AA:25:57
MDS Fingerprint A9:41:5e:3a:b4:8E:D8:D6:95:8D:609:5c:82:55:11:07
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

This Connection is Untrusted Help Needed

[Lee]

This Connection is Untrusted

You have asked SeaMonkey to connect securely to weather.yahoo.com, or 
facebook or my bank but we can't confirm that your connection is secure. 
 Just about anyplace

I try to go

Normally, when you try to connect securely, websites will present 
trusted identification to prove that you are going to the right place. 
However, this website's identity can't be verified.

What Should I Do?

If you usually connect to this website without problems, this error 
could mean that someone is trying to impersonate the website, and you 
shouldn't continue.

Technical Details
I Understand the Risks

__
The above pops up when I try to access web pages.  I can get to Yahoo 
but most others are a no go!  This is what someone told me to do and I 
did as instructed and followed the path set up to check the 
certification  and all three boxes were checked.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Lee]

Well I am not dumb just not a techie!  Plus if I make a mistake
I lose all the stuff on here.  My time was spent in the Army
and believe me while I learned a lot in some ways I missed a lot
also.  Hey thanks for the help will give it a try.  You young
whipper snaper! Mine is July!


David E. Ross wrote:

Age 75 is not so bad.  I am about two months shy of 73.  But then my
whole 40+ year career -- until I retired -- involved computer software.


___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[David E. Ross]

On 5/22/2014 11:10 AM, Lee wrote:
> David E. Ross wrote:
>> On 5/21/2014 4:05 AM, Lee wrote:
>>> This is being typed on another computer.  On my Desktop running Vista I
>>> keep getting that message every time I try almost any site.  It has just
>>> started doing that and needless to say has me perplexed.
>>> Below is the msg I keep getting with a symbol of a crossing guard I
>>> assume. I have run my security programs with negative results
>>>
>>> You have asked SeaMonkey to connect securely to www.facebook.com but we
>>> cannot confirm that your connection is secure.
>>>
>>> Normally,when you try to connect securely, websites will present
>>> trusted identification to prove that you are going to the right place.
>>> However, this website identity cant be verified.
>>>
>>> Any tips would be appreciated.  I use AVG for Internet security.
>>>
>>
>> Either you have distrusted root SSL certificates or else your database
>> of certificates has become corrupted.
>>
>> To start, go to your SeaMonkey menu bar and select [Edit > Preferences].
>>   On the left side of your Preferences window, select [Preference >
>> Privacy & Security > Certificates].  On the Certificates pane, select
>> the Manage Certificates button.  On the Certificates Manager window,
>> select the Authorities tab.  Do you see a list of certification
>> authorities, under which their root certificates are listed indented?
>>
>> If so, scroll down the list to Digicert.  Select DigiCert High Assurance
>> EV Root CA (the certificate used by Facebook) and then the Edit Trust
>> button.  You should see a checkmark for "This certificate can identify
>> websites".  If there is no checkmark, terminate SeaMonkey, open the
>> folder containing your profile, delete file cert8.db, relaunch
>> SeaMonkey, and try Facebook again.
>>
>> If you do not see a list of certification authorities and their root
>> certificates in the Certificates Manager window, then your database of
>> certificates is corrupted or missing.  You need to import the database
>> file from a good SeaMonkey installation while SeaMonkey is not running.
>>   In this case, I do not know the name of the file; but someone else
>> reading this thread should be able to provide it.  If the file on your
>> PC already exists but is corrupted, I do not know if reinstalling
>> SeaMonkey will help.
>>
> I followed each step and found all 3 boxes checked.  Is it possible to 
> just delete the Sea Monkey folder and then re install Sea Monkey?  Also 
> how in the heck do you change the pass word?  I have looked and looked 
> but did not find it.  BTW if I appear lost I am at almost 75 I am slow 
> at this stuff and most of the time it is over my head but I try.  BTW 
> again thanks for your assistance that was easy to follow.
> 

Try reinstalling SeaMonkey WITHOUT deleting anything.  If that does not
work, use the Windows [Control Panel > All Control Panel Items >
Programs and Features} to delete SeaMonkey and then try reinstalling
SeaMonkey again.

Age 75 is not so bad.  I am about two months shy of 73.  But then my
whole 40+ year career -- until I retired -- involved computer software.

-- 

David E. Ross


On occasion, I filter and ignore all newsgroup messages
posted through GoogleGroups via Google's G2/1.0 user agent
because of spam, flames, and trolling from that source.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Lee]

David E. Ross wrote:

On 5/21/2014 4:05 AM, Lee wrote:

This is being typed on another computer.  On my Desktop running Vista I
keep getting that message every time I try almost any site.  It has just
started doing that and needless to say has me perplexed.
Below is the msg I keep getting with a symbol of a crossing guard I
assume. I have run my security programs with negative results

You have asked SeaMonkey to connect securely to www.facebook.com but we
cannot confirm that your connection is secure.

Normally,when you try to connect securely, websites will present
trusted identification to prove that you are going to the right place.
However, this website identity cant be verified.

Any tips would be appreciated.  I use AVG for Internet security.



Either you have distrusted root SSL certificates or else your database
of certificates has become corrupted.

To start, go to your SeaMonkey menu bar and select [Edit > Preferences].
  On the left side of your Preferences window, select [Preference >
Privacy & Security > Certificates].  On the Certificates pane, select
the Manage Certificates button.  On the Certificates Manager window,
select the Authorities tab.  Do you see a list of certification
authorities, under which their root certificates are listed indented?

If so, scroll down the list to Digicert.  Select DigiCert High Assurance
EV Root CA (the certificate used by Facebook) and then the Edit Trust
button.  You should see a checkmark for "This certificate can identify
websites".  If there is no checkmark, terminate SeaMonkey, open the
folder containing your profile, delete file cert8.db, relaunch
SeaMonkey, and try Facebook again.

If you do not see a list of certification authorities and their root
certificates in the Certificates Manager window, then your database of
certificates is corrupted or missing.  You need to import the database
file from a good SeaMonkey installation while SeaMonkey is not running.
  In this case, I do not know the name of the file; but someone else
reading this thread should be able to provide it.  If the file on your
PC already exists but is corrupted, I do not know if reinstalling
SeaMonkey will help.

I followed each step and found all 3 boxes checked.  Is it possible to 
just delete the Sea Monkey folder and then re install Sea Monkey?  Also 
how in the heck do you change the pass word?  I have looked and looked 
but did not find it.  BTW if I appear lost I am at almost 75 I am slow 
at this stuff and most of the time it is over my head but I try.  BTW 
again thanks for your assistance that was easy to follow.

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[David E. Ross]

On 5/21/2014 9:39 AM, Ed Mullen wrote:
> David E. Ross wrote:
>> On 5/21/2014 4:05 AM, Lee wrote:
>>> This is being typed on another computer.  On my Desktop running Vista I
>>> keep getting that message every time I try almost any site.  It has just
>>> started doing that and needless to say has me perplexed.
>>> Below is the msg I keep getting with a symbol of a crossing guard I
>>> assume. I have run my security programs with negative results
>>>
>>> You have asked SeaMonkey to connect securely to www.facebook.com but we
>>> cannot confirm that your connection is secure.
>>>
>>> Normally,when you try to connect securely, websites will present
>>> trusted identification to prove that you are going to the right place.
>>> However, this website identity cant be verified.
>>>
>>> Any tips would be appreciated.  I use AVG for Internet security.
>>>
>>
>> Either you have distrusted root SSL certificates or else your database
>> of certificates has become corrupted.
>>
>> To start, go to your SeaMonkey menu bar and select [Edit > Preferences].
>>   On the left side of your Preferences window, select [Preference >
>> Privacy & Security > Certificates].  On the Certificates pane, select
>> the Manage Certificates button.  On the Certificates Manager window,
>> select the Authorities tab.  Do you see a list of certification
>> authorities, under which their root certificates are listed indented?
>>
>> If so, scroll down the list to Digicert.  Select DigiCert High Assurance
>> EV Root CA (the certificate used by Facebook) and then the Edit Trust
>> button.  You should see a checkmark for "This certificate can identify
>> websites".  If there is no checkmark, terminate SeaMonkey, open the
>> folder containing your profile, delete file cert8.db, relaunch
>> SeaMonkey, and try Facebook again.
>>
>> If you do not see a list of certification authorities and their root
>> certificates in the Certificates Manager window, then your database of
>> certificates is corrupted or missing.  You need to import the database
>> file from a good SeaMonkey installation while SeaMonkey is not running.
>>   In this case, I do not know the name of the file; but someone else
>> reading this thread should be able to provide it.  If the file on your
>> PC already exists but is corrupted, I do not know if reinstalling
>> SeaMonkey will help.
>>
> 
> I believe the file is:  cert8.db
> 
> 
> 
> 

That is what Mozillazine says.  However, I thought cert8.db contained
only what the user changed relative to untrusting or deleting root
certificates and changing trust bits.

If I delete cert8.db and then relaunch SeaMonkey, a new cert8.db is
created.  What is the source of that?

-- 

David E. Ross


On occasion, I filter and ignore all newsgroup messages
posted through GoogleGroups via Google's G2/1.0 user agent
because of spam, flames, and trolling from that source.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[Ed Mullen]

David E. Ross wrote:

On 5/21/2014 4:05 AM, Lee wrote:

This is being typed on another computer.  On my Desktop running Vista I
keep getting that message every time I try almost any site.  It has just
started doing that and needless to say has me perplexed.
Below is the msg I keep getting with a symbol of a crossing guard I
assume. I have run my security programs with negative results

You have asked SeaMonkey to connect securely to www.facebook.com but we
cannot confirm that your connection is secure.

Normally,when you try to connect securely, websites will present
trusted identification to prove that you are going to the right place.
However, this website identity cant be verified.

Any tips would be appreciated.  I use AVG for Internet security.



Either you have distrusted root SSL certificates or else your database
of certificates has become corrupted.

To start, go to your SeaMonkey menu bar and select [Edit > Preferences].
  On the left side of your Preferences window, select [Preference >
Privacy & Security > Certificates].  On the Certificates pane, select
the Manage Certificates button.  On the Certificates Manager window,
select the Authorities tab.  Do you see a list of certification
authorities, under which their root certificates are listed indented?

If so, scroll down the list to Digicert.  Select DigiCert High Assurance
EV Root CA (the certificate used by Facebook) and then the Edit Trust
button.  You should see a checkmark for "This certificate can identify
websites".  If there is no checkmark, terminate SeaMonkey, open the
folder containing your profile, delete file cert8.db, relaunch
SeaMonkey, and try Facebook again.

If you do not see a list of certification authorities and their root
certificates in the Certificates Manager window, then your database of
certificates is corrupted or missing.  You need to import the database
file from a good SeaMonkey installation while SeaMonkey is not running.
  In this case, I do not know the name of the file; but someone else
reading this thread should be able to provide it.  If the file on your
PC already exists but is corrupted, I do not know if reinstalling
SeaMonkey will help.



I believe the file is:  cert8.db




--
Ed Mullen
http://edmullen.net/
Nothing says poor craftsmanship more than wrinkled duct tape.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: This Connection is Untrusted

[David E. Ross]

On 5/21/2014 4:05 AM, Lee wrote:
> This is being typed on another computer.  On my Desktop running Vista I 
> keep getting that message every time I try almost any site.  It has just 
> started doing that and needless to say has me perplexed.
> Below is the msg I keep getting with a symbol of a crossing guard I 
> assume. I have run my security programs with negative results
> 
> You have asked SeaMonkey to connect securely to www.facebook.com but we 
> cannot confirm that your connection is secure.
> 
> Normally,when you try to connect securely, websites will present 
> trusted identification to prove that you are going to the right place. 
> However, this website identity cant be verified.
> 
> Any tips would be appreciated.  I use AVG for Internet security.
> 

Either you have distrusted root SSL certificates or else your database
of certificates has become corrupted.

To start, go to your SeaMonkey menu bar and select [Edit > Preferences].
 On the left side of your Preferences window, select [Preference >
Privacy & Security > Certificates].  On the Certificates pane, select
the Manage Certificates button.  On the Certificates Manager window,
select the Authorities tab.  Do you see a list of certification
authorities, under which their root certificates are listed indented?

If so, scroll down the list to Digicert.  Select DigiCert High Assurance
EV Root CA (the certificate used by Facebook) and then the Edit Trust
button.  You should see a checkmark for "This certificate can identify
websites".  If there is no checkmark, terminate SeaMonkey, open the
folder containing your profile, delete file cert8.db, relaunch
SeaMonkey, and try Facebook again.

If you do not see a list of certification authorities and their root
certificates in the Certificates Manager window, then your database of
certificates is corrupted or missing.  You need to import the database
file from a good SeaMonkey installation while SeaMonkey is not running.
 In this case, I do not know the name of the file; but someone else
reading this thread should be able to provide it.  If the file on your
PC already exists but is corrupted, I do not know if reinstalling
SeaMonkey will help.

-- 

David E. Ross


On occasion, I filter and ignore all newsgroup messages
posted through GoogleGroups via Google's G2/1.0 user agent
because of spam, flames, and trolling from that source.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

This Connection is Untrusted

[Lee]

This is being typed on another computer.  On my Desktop running Vista I 
keep getting that message every time I try almost any site.  It has just 
started doing that and needless to say has me perplexed.
Below is the msg I keep getting with a symbol of a crossing guard I 
assume. I have run my security programs with negative results


You have asked SeaMonkey to connect securely to www.facebook.com but we 
cannot confirm that your connection is secure.


Normally,when you try to connect securely, websites will present 
trusted identification to prove that you are going to the right place. 
However, this website identity cant be verified.


Any tips would be appreciated.  I use AVG for Internet security.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey