Firefox3 WTF!
September 2021
Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30    
This site is an effort to share some of the base knowledge I have gathered through all this years working with Linux, FreeBSD, OpenBSD, Python or Zope, among others. So, take a look around and I hope you will find the contents useful.
Recent Entries
Recent Comments
Recent Trackbacks
OpenBSD (9 items)
BSD (0 items)
FreeBSD (19 items)
Linux (3 items)
Security (3 items)
Python (22 items)
Zope (13 items)
Daily (144 items)
e-shell (9 items)
Hacks (14 items)
PostgreSQL (3 items)
OSX (8 items)
Nintendo DS (0 items)
enlightenment (0 items)
Apache (3 items)
Nintendo Wii (1 items)
Django (24 items)
Music (12 items)
Plone (7 items)
Varnish (0 items)
Lugo (2 items)
Sendmail (0 items)
europython (7 items)
Cherokee (1 items)
self (1 items)
Nature (1 items)
Hiking (0 items)
uwsgi (0 items)
nginx (0 items)
cycling (10 items)
Networking (1 items)
DNS (0 items)

Syndicate this site (XML)

RSS/RDF 0.91

24 marzo

Firefox3 WTF!

or how I disagree with some things...

Some days ago I decided to try Firefox 3.0-beta4. At first I was impressed about it's performance, it is really fast tested against the latest version of the 2.0 branch.

Another big point in version 3 is that it doesn't seem to swallow RAM like the 2.0 version. Now I can use the browser even after leaving it opened 2 or more days (in OSx and in FreeBSD leaving Firefox opened from one day to another ends in a almost unusable browser cause it renders itself quite slow).

That's all pretty good, Firefox3, the next generation of a great browser... until I tried to connect to my own webmail service...

Then I realized that the Firefox developers decided to take an approach when dealing with self-signed web certificates very similar to that of the infame IE7.

When you try to access an https website that uses a self-signed cert, you will get something like that:

WTF! an error message when accesing https

WTF!, it is the same kind of message firefox shows when a given domain name does not resolv or when you can't connect to a no-response web server, THAT'S VERY CONFUSING FOR END USERS!.

Of course, you can add a security exception, for that, you only have to click on the link in that page I've showed you (o puede añadir una excepcion in spanish), then you will see something like:

Adding an exception

More ugly and scaring error messages, you click on add exception (añadir excepcion in spanish) to get to another window where you will see the URL you were trying to connect to:

and now you will have to get the cert and add it

There, you will have to push the get certificate button (obtener certificado) to get another error message:

after a lot of ugly errors, you could add your certificate

So, what? I'll tell you my point of view. Imagine you have a website where you offer a service to your customers. That website requires that your customers provide some login information to use the website, so you set up a secure web server certificate using OpenSSL in your web server. OK, your website is secure now.

Your customers are using the website using Opera or Firefox 2, the first time they connect to the website they got a message asking them about installing a security certificate, they took a look over the cert, pressed Ok, and they are done.

Now they upgrade their Firefox browser and try to use the same website... what will happen then? an ugly and scaring message about that website being not trustable and what is worse, a long 4-window process to be able to access that website, a process that could be difficult to follow for non-techie users.

So, Why do they have to change something that was working perfectly in earlier versions? I do not know, but I don't think that was a good idea (IMHO).

(well, I can think about a reason, the same reason some companies ask for 300$-500$ if you want to get a valid web server certificate).

Posted by wu at 23:32 | Comments (0) | Trackbacks (0)
<< man paths in OSX | Main | Comments are back! >>
There are no comments.
Please send trackback to:
There are no trackbacks.
Post a comment