MozillaZine

SeaMonkey Download issue

User Help for Seamonkey and Mozilla Suite
rwremote
 
Posts: 6
Joined: September 5th, 2011, 9:41 am

Post Posted March 8th, 2017, 1:05 pm

Got two boxes here (Win 7 & XP) with different internet connections with two different providers.

The Win7 box is on a wired broadband connection, and I get the "Your connection is not secure" error with the following info.
download.cdn.mozilla.net uses an invalid security certificate.
The certificate is only valid for the following names
: *.akamaihd.net, *.akamaized-staging.net, *.akamaized.net, *.akamaihd-staging.net, a248.e.akamai.net
When downloading via the link on http://www.seamonkey-project.org/releases/

The XP box downloads just fine via 4G wireless.
I've raised this on the Mozilla support site here but as the offending redirect is on the SeaMonkey site not sure who else to advise.
I would point out that downloading from http://www.seamonkey-project.org/releases/2.46 its perfect on both boxes.
Should I sort out the DNS entries on my win 7 box ?

barbaz
 
Posts: 1680
Joined: October 1st, 2014, 3:25 pm

Post Posted March 8th, 2017, 3:21 pm

rwremote wrote: I get the "Your connection is not secure" error with the following info.
download.cdn.mozilla.net uses an invalid security certificate.
The certificate is only valid for the following names
: *.akamaihd.net, *.akamaized-staging.net, *.akamaized.net, *.akamaihd-staging.net, a248.e.akamai.net

Do you have NoScript?
*Always* check the changelogs BEFORE updating that important software!

therube

User avatar
 
Posts: 18002
Joined: March 10th, 2004, 9:59 pm
Location: Maryland USA

Post Posted March 9th, 2017, 1:21 pm

Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball CopyURL+ FetchTextURL FlashGot NoScript

therube

User avatar
 
Posts: 18002
Joined: March 10th, 2004, 9:59 pm
Location: Maryland USA

Post Posted March 9th, 2017, 1:38 pm

The "bouncer" links on http://www.seamonkey-project.org/releases/ are https: (like, https://download.mozilla.org/?product=s ... lang=en-US), which is OK.
But they "roll over" to plain http: (non-https:) links (like http://download.cdn.mozilla.net/pub/sea ... 202.46.exe), which is also "OK" (assuming you don't actually want https:, though I'd think the intent & desire is that the download come down over https: - which it isn't doing).
Problem is if you're "forcing" https: (which NoScript has the option to do, or https everywhere, or similar), then the "rolled to" link, which is http: fails (which is expected as there is no valid https: link as specified).

Presumably, at least these days, you would expect the links to be https:, & that being the case, SeaMonkey ends up pointing to http:. If https: is wanted the links SeaMonkey points to need to change.
Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball CopyURL+ FetchTextURL FlashGot NoScript

rwremote
 
Posts: 6
Joined: September 5th, 2011, 9:41 am

Post Posted March 13th, 2017, 9:34 am

Sorry for the late reply.(Shift work gets in the way).

Thanks a lot for the detailed replies and the code behind it.
Yes I do have NoScript installed. It's still a bit of a Mystery to me, as both boxes have 2.9.5.3 with the same settings.

To satisfy my curiosity I plugged the W7 box (the one that throws up the error) in to the 4G router and it finds the correct download with no errors. Perhaps one of the ISPs has different way of handling https requests or it hits a redirect that NoScript doesn't like . . . who knows . . . Anyway, thanks for the quick replies.

barbaz
 
Posts: 1680
Joined: October 1st, 2014, 3:25 pm

Post Posted March 13th, 2017, 10:03 am

rwremote wrote:Yes I do have NoScript installed.

Fix: NoScript Options > Advanced > HTTPS, add download.cdn.mozilla.net to "Never force secure (HTTPS) connections for the following sites:"
*Always* check the changelogs BEFORE updating that important software!

Return to SeaMonkey Support


Who is online

Users browsing this forum: No registered users and 3 guests