[Privoxy-users] Text replacement doesn't work

Matteo Spigolon ns at fabbricapolitica.com
Fri Jan 28 15:13:17 UTC 2022 

Tried the examples, same errors.

Then, I removed the cipher-lists and I got this message:

"Did Not Connect: Potential Security Issue. Firefox detected a potential security threat and did not continue to it.wikipedia.org because this website requires a secure connection. What can you do about it? it.wikipedia.org has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site. The issue is most likely with the website, and there is nothing you can do to resolve it. If you are on a corporate network or using anti-virus software, you can reach out to the support teams for assistance. You can also notify the website’s administrator about the problem."

I clicked on advanced button and I got this message:

"Someone could be trying to impersonate the site and you should not continue. Websites prove their identity via certificates. Firefox does not trust it.wikipedia.org because its certificate issuer is unknown, the certificate is self-signed, or the server is not sending the correct intermediate certificates. Error code: SEC_ERROR_UNKNOWN_ISSUER”

Different error, same problem: I can’t visit the site.
 
> Il giorno 28 gen 2022, alle ore 14:11, Fabian Keil <fk at fabiankeil.de> ha scritto:
> 
> Matteo Spigolon <ns at fabbricapolitica.com> wrote on 2022-01-28 at 13:53:34:
> 
>> Fixed permission and added a password.
>> 
>> Errors now:
>> 
>> 2022-01-28 13:53:23.252 7f0b6ffff700 Error: Failed to get ciphersuite id for ALL
>> 2022-01-28 13:53:23.252 7f0b6ffff700 Error: Setting the cipher list 'ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH' for the client connection failed
>> 2022-01-28 13:53:23.252 7f0b6ffff700 Error: Failed to open a secure connection with the client
> 
> It looks like you are using a cipher list that is expected
> to work with OpenSSL but are using a Privoxy binary that has
> been linked against mbedTLS.
> 
> Try removing the cipher-list directive or try the examples
> that are supposed to work with mbedTLS:
> <https://www.privoxy.org/user-manual/config.html#CIPHER-LIST>
> 
> Be aware of the warning, though:
> | Specifying an unusual cipher list makes fingerprinting easier.
> | Note that the default list provided by the TLS library may be
> | unusual when compared to the one used by modern browsers as well.
> 
> Fabian

More information about the Privoxy-users mailing list