[Privoxy-users] Text replacement doesn't work

Matteo Spigolon ns at fabbricapolitica.com
Fri Jan 28 16:21:29 UTC 2022 

I just imported the certificate "cacert.crt" in Firefox, and now it’s working.

Thank you very much.

But there's the last problem: if I have a large organization, it’s impossible to import that certificate in every client manually. So how do to put the certificate on every client that uses the internal proxy? 

> Il giorno 28 gen 2022, alle ore 16:53, Fabian Keil <fk at fabiankeil.de> ha scritto:
> 
> Matteo Spigolon <ns at fabbricapolitica.com> wrote on 2022-01-28 at 16:13:17:
> 
>> Tried the examples, same errors.
>> 
>> Then, I removed the cipher-lists and I got this message:
>> 
>> "Did Not Connect: Potential Security Issue. Firefox detected a potential
>> security threat and did not continue to it.wikipedia.org because this
>> website requires a secure connection. What can you do about it?
>> it.wikipedia.org has a security policy called HTTP Strict Transport
>> Security (HSTS), which means that Firefox can only connect to it
>> securely. You can’t add an exception to visit this site. The issue is
>> most likely with the website, and there is nothing you can do to resolve
>> it. If you are on a corporate network or using anti-virus software, you
>> can reach out to the support teams for assistance. You can also notify
>> the website’s administrator about the problem."
>> 
>> I clicked on advanced button and I got this message:
>> 
>> "Someone could be trying to impersonate the site and you should not
>> continue. Websites prove their identity via certificates. Firefox does
>> not trust it.wikipedia.org because its certificate issuer is unknown,
>> the certificate is self-signed, or the server is not sending the correct
>> intermediate certificates. Error code: SEC_ERROR_UNKNOWN_ISSUER”
>> 
>> Different error, same problem: I can’t visit the site.
> 
> Looks like Privoxy is finally working but you haven't configured
> Firefox to accept the ca-cert-file as trusted yet.
> 
> | The file is used by Privoxy to generate website certificates when
> | https inspection is enabled with the https-inspection action.
> |
> | Privoxy clients should import the certificate so that they can
> | validate the generated certificates.
> <https://www.privoxy.org/user-manual/config.html#CA-CERT-FILE>
> 
> On my Firefox version the certificate can be imported through:
> <about:preferences#privacy> -> View Certificates -> Import
> 
> Fabian

More information about the Privoxy-users mailing list