[Privoxy-devel] https inspection vs HPKP
Lee
ler762 at gmail.com
Mon Jul 20 23:35:50 UTC 2020
Is there a way to tell Firefox to not do certificate pinning if the
cert comes from my bogus CA?
I just tried
{ +https-inspection }
.googlevideo.com/
.youtube.com/
and got
Secure Connection Failed
An error occurred during a connection to www.youtube.com. The server
uses key pinning (HPKP) but no trusted certificate chain could be
constructed that matches the pinset. Key pinning violations cannot be
overridden. Error code: MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE
I have a vague memory of this happening to me before (work laptop
traveling between home & work + data loss prevention appliance at
work) and having to delete some firefox tracking file. So I'm sure I
can "fix" this.. but it's going to be a pain if I want to try some
thing with & without https inspection.
Thanks
Lee
More information about the Privoxy-devel
mailing list