!codecels look at this cute twink frick horse shit! I the USER can't ignore this error. Firestrag decided that I must be too stupid to understand such things and therefore must not be allowed to ignore this non-fatal error for my own good.
And frick all on the about page about making this fricking work.
And what do you, known bug for 10 fricking years and it's still broken out of the box.
The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website's administrator about the problem.
Suck my peepee. You can stop being a ssl strag and LET ME VIEW THE FRICKING CONTENT I CLICKED ON
Jump in the discussion.
No email address required.
Do you even
about:config
neighbor?Jump in the discussion.
No email address required.
yes but I refuse to have to open a fricking config menu to bypass a worthless error like this
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
It's kinda like Microsoft defaulting the windows control panel into their useless settings feature. Tech illiterates have no business fricking with the control panel
Jump in the discussion.
No email address required.
THERE'S 2 OF THEM
Jump in the discussion.
No email address required.
More options
Context
More options
Context
I CAN I'M JUST TOO LAZY
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
Jump in the discussion.
No email address required.
More options
Context
More options
Context
it very much is a tard gatekeep wall, but the problem with flags is theyre experimental and youll never have the security of knowing if theyll even exist in the next release or not. its absolute fricking dogshit that these things are placed in flags because it makes them unreliable solutions.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
That kind of attitude is the reason we still don't have Year of the Linux Desktop
Jump in the discussion.
No email address required.
More options
Context
More options
Context
What would he do with
about:config
?Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
I bet chatgpt will explain it better than you r-slurs could have anyways.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
TL:DR there's some random test setting that if set to a large int will cause firefox not to check HSTS.
I just deleted the HSTS database on disk, remade it and made it readonly
Jump in the discussion.
No email address required.
Thanks for explaining that. First time I'm hearing about HSTS.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
In current year broken SSL means the site is run by incompetent r-slurs, they're really doing you a favor.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
downvote
Jump in the discussion.
No email address required.
More options
Context
Or maybe I'm running my own services locally
Jump in the discussion.
No email address required.
It takes 60 seconds to set up a local CA with mkcert or the 50 other tools
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
t. irreplaceable Engineering Fellow making $500k/year maintaining eleven perl/fastcgi scripts since 1999.
Jump in the discussion.
No email address required.
More options
Context
Job security nice
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
Why did you set up HSTS for something that's just running locally?
Jump in the discussion.
No email address required.
More options
Context
More options
Context
Unlike SPAL I'm a bad boy risk taker. If I wanna go raw into a dodgy site, I will.
Jump in the discussion.
No email address required.
More options
Context
I literally do not care about the 1 in 10 million chance of a MITM attack occurring when Im viewing someones r-slurred blog post.
Jump in the discussion.
No email address required.
More options
Context
Imagine not signing your own certificates
Jump in the discussion.
No email address required.
found the incel
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
Jump in the discussion.
No email address required.
Web dev used to be all about polyfills, caniuse, and multi-browser QA.
Now we comfortably tell people to use chrome or shut the frick up.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
Linux had registered users?
Jump in the discussion.
No email address required.
The s*x offender registry
Jump in the discussion.
No email address required.
... I may have taken this screenshot while researching a s*x pest's old blog for a KF thread.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
Linux had an attitude?
Jump in the discussion.
No email address required.
The attitude of a whiny little b-word who never gets picked in gym class and that is because he's too intellectual for normies.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
I dunno maybe it has something to do with needing to input 20 commands in the terminal with admin privileges to change the desktop wallpaper.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
More like internet EXPLODER am I right fellow nerds
Jump in the discussion.
No email address required.
I hadn't heard that phrase in like 15 years until professional whiner and general cute twink Louis Rossman dropped it in one of his videos recently and I laughed so hard because it was such a great 2002-era maymay
Jump in the discussion.
No email address required.
mfw I have the world's darkest circles under my eyes
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
I know it's so great
Jump in the discussion.
No email address required.
More options
Context
More options
Context
Imagine not using brave or vivaldi
Jump in the discussion.
No email address required.
I don't have to
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
God's most oppressed minorities
Jump in the discussion.
No email address required.
More options
Context
That's just how hsts is designed to work. You can still get around it by removing the hsts entry.
Jump in the discussion.
No email address required.
No I think hsts are designed to take pills and suck peepee
Jump in the discussion.
No email address required.
More options
Context
"It's designed to be r-slur bro!"
Still r-slurred and worthless
Why is there not a button for that then?
Jump in the discussion.
No email address required.
It's designed to be r-slurred on every browser, even chrome. That's why chrome has a settings page to clear the hsts cache.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
!codecels
https://security.stackexchange.com/questions/102279/can-hsts-be-disabled-in-firefox#154176
I'm just disabling HSTS entirely because it is simply too straggy to be worth dealing with.
"Oh no the user can't just like have a easy UI that allows them to bypass this, that heckin' unsafe!" stfu neighbor no one cares firefox is for strags
Jump in the discussion.
No email address required.
HSTS > AGP
Jump in the discussion.
No email address required.
More options
Context
Follower of Christ Tech lover, IT Admin, heckin pupper lover and occasionally troll. I hold back feelings or opinions, right or wrong because I dislike conflict.
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
.... How. If I can't access the page, how do I get in touch with the administrator?
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
on twitter
Jump in the discussion.
No email address required.
More options
Context
More options
Context
Blame the r-slur who doesnt know how to host a website.
Jump in the discussion.
No email address required.
More options
Context
Firefox is my meat beating browser so all my porn isn't on my main browser
Jump in the discussion.
No email address required.
More options
Context
Im an r-slur but
Jump in the discussion.
No email address required.
no it doesn't. Look at his screenshot.
OP is an r-slur, all browsers have acted like this for years.
You can skip some SSL errors, but nitter.net made a deliberate decision to say "never let someone connect to us over HTTP for 10 years"
Jump in the discussion.
No email address required.
You're right
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
It tells you right there that nitter uses HSTS. The website is telling you “if you can't connect over HTTPS then something is seriously wrong”
Follower of Christ Tech lover, IT Admin, heckin pupper lover and occasionally troll. I hold back feelings or opinions, right or wrong because I dislike conflict.
Jump in the discussion.
No email address required.
and I want to tell it
and view the content anyway!
Jump in the discussion.
No email address required.
Then complain about the website and not FF?
HSTS specs clearly say "not secure, no connection". And FF thankfully implements the spec correctly. Nothing I hate more than software/policies ignoring specs. They exist for a reason and if you want to do something different then use something different.
Jump in the discussion.
No email address required.
yes but this spec is gay
Jump in the discussion.
No email address required.
And nitter chose to use it
Jump in the discussion.
No email address required.
More options
Context
It being used by nitter is definitely gay.
But I bet you can come up with use-cases of where you need a spec that doesn't allow any connection if you cannot "guarantee" that it's secure.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
More options
Context
you don't hate stupid people enough. they will cause everything to become a walled garden. the stakes are too high.
Jump in the discussion.
No email address required.
Let them fail, let me use website with no sensitive data on it
Jump in the discussion.
No email address required.
found the incel
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
what is this 1999 you might as well use netscape
Jump in the discussion.
No email address required.
More options
Context
click on "Advance" you goddarn moron
Jump in the discussion.
No email address required.
I did! It just opens the little "Websites prove their identity via certificates, which are valid for a set time period. The certificate for nitter.net expired on 2024-01-27." box at the bottom!
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
NIce rant, I agree, amen brother!
Jump in the discussion.
No email address required.
More options
Context
NOOOO THE FIREFOX RENAISSANCE WAS BASED AS HECK
...wait... i don't understand what ignoring SSL errors means.... so I'll just keep using firefox.
Jump in the discussion.
No email address required.
More options
Context
This really fricks me over whenever I need to portforward a site over ssh, anyone know how to deal with this issue in that situation?
Jump in the discussion.
No email address required.
More options
Context
Did you figure out a solution?
Jump in the discussion.
No email address required.
I deleted SiteSecurityServiceState,bin and ,txt from my firefox profile, remade the files and made them read only
Jump in the discussion.
No email address required.
Ty
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
strag doesn't even try the advanced options
Jump in the discussion.
No email address required.
More options
Context
Found the incel.
Jump in the discussion.
No email address required.
More options
Context
Snapshots:
https://superuser.com/questions/826232/how-to-bypass-the-secure-connection-failed-warning-in-firefox-33:
ghostarchive.org
archive.org
archive.ph (click to archive)
Jump in the discussion.
No email address required.
More options
Context