Me: I'd like to trust this self signed certificate.

Firefox: No, that's insecure, user.

Me: I'm aware. I'm a big girl. Add the exception.

Firefox: No, please contact your administrator.

Me: Listen here you little #$@! I *am* the administrator. Add. The. Exception.

Firefox: I'm afraid I can't do that Val…

Me: *opens about:config*

@viciousviscosity is it bad that all I want to do now is wear platform heels and wield an axe?

"Dreams are . . . illustrations from the book your soul is writing about you."
– Marsha Norman

@viciousviscosity I'm sat in tights and pajama shorts so i'm living a portion of the dream; at least... wow that was kind of liberating to write.

@viciousviscosity @carbontwelve As long as you're not deploying to production on Friday night, it's all good.

@ed1conf @viciousviscosity @carbontwelve If the words "deploying to production on Friday night" appear in your life, the ax is mandatory.

Heels? Well, you might as well look good while resolving the root cause...

@viciousviscosity but adding cert exception is like 3 clicks? or is it not on windows

I was a hardcore remembered hsts setting for the url in the local profile I had to yank out.

@viciousviscosity Might you have an example of such a site handy? Now I'm curious to see how STP handles such cases.

In love with the gif, too. I /must/ get some serious stilettos sometime..

@riking @viciousviscosity Quite the perfect domain. ^_^ Ah, cool! Warns, and gives the option to proceed.

@porsupah @viciousviscosity subdomain.preloaded-hsts.badss
You should see:
"This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox may only connect to it securely. As a result, it is not possible to add an exception for this certificate."

@viciousviscosity Just another day in the life of 'Val From IT' 😂 💖

@viciousviscosity Please, please disconnect the speakers before you do anything. Spare use the horror of Firefox singing Daisy! ;)

@viciousviscosity i highly recommend using cfssl to set up your own root, instead of doing self-signed :)

@viciousviscosity If Firefox allowed you to bypass HSTS, well, easily, it would be kind of letting down users in terms of security. HSTS means the server says "I PROHIBIT YOU FROM LETTING THIS USER USE INSECURE CONNECTIONS". Ignoring that would be a violation of what rules the server has placed for using it.

But yeah, it's annoying :D I configure all my sites with HSTS.

Oh yes, it's completely valid, but none the less frustrating for internal test systems. It was resolved in the end. 😁

@viciousviscosity I simply love everything about that post. Especially that 2001 reference... and the build up... and that gif. It is the most perfect post on mastodon yet.

Sign in to participate in the conversation

Cybrespace is an instance of Mastodon, a social network based on open web protocols and free, open-source software. It is decentralized like e-mail.