firefox - insecure update

User Help for Mozilla Firefox
myself123
Guest

firefox - insecure update

Post by myself123 »

when i open ff i keep getting this message below , many thanks


Something is trying to trick Firefox into accepting an insecure update. Please contract your network provider and seek help
User avatar
LoudNoise
New Member
Posts: 39900
Joined: October 18th, 2007, 1:45 pm
Location: Next door to the west

Re: firefox - insecure update

Post by LoudNoise »

That isn't a normal message.
Moderator Daifne's Malware Suggestions:
Install and run these programs. All have a free working version available.
Malwarebytes' Anti-Malware
SuperAntispyware
AdAware
Spybot Search & Destroy

If these don't find it or can't clear it, post in one of these forums for specialized malware removal help:
http://www.spywarewarrior.com/index.php
http://forum.aumha.org/
http://www.spywareinfoforum.com/
http://www.bleepingcomputer.com/forums/forum79.html
Post wrangler
"Choose between the Food Select Feature or other Functions. If no food or function is chosen, Toast is the default."
Vitesse
Posts: 1238
Joined: April 21st, 2011, 6:03 pm

Re: firefox - insecure update

Post by Vitesse »

There is some discussion of this message here, but nobody seems to have decided exactly what causes it:

http://support.mozilla.com/en-US/questions/815130
KWierso
Posts: 8829
Joined: May 7th, 2006, 10:29 pm
Location: California

Re: firefox - insecure update

Post by KWierso »

User avatar
Gingerbread Man
Posts: 7735
Joined: January 30th, 2007, 10:55 am

Re: firefox - insecure update

Post by Gingerbread Man »

If it's not malware, then it sounds like one those wonky firewalls or ISPs that corrupt security certificates.
Vitesse
Posts: 1238
Joined: April 21st, 2011, 6:03 pm

Re: firefox - insecure update

Post by Vitesse »

The typo - "contract" for "contact" - and the advice to "seek help" certainly make it look malware-ish or at the very least unprofessional.
User avatar
Gingerbread Man
Posts: 7735
Joined: January 30th, 2007, 10:55 am

Re: firefox - insecure update

Post by Gingerbread Man »

Vitesse wrote:The typo - "contract" for "contact" - and the advice to "seek help" certainly make it look malware-ish or at the very least unprofessional.

There is no screenshot provided, and I never assume people on the Internet are capable of impeccable spelling.

Apart from that, Firefox is no stranger to whimsical error messages. about:config has a tongue-in-cheek note about voiding your warranty, while about:sessionrestore has a message about being embarrassed.
User avatar
LoudNoise
New Member
Posts: 39900
Joined: October 18th, 2007, 1:45 pm
Location: Next door to the west

Re: firefox - insecure update

Post by LoudNoise »

I doubt that they would joke about something trying to push an insecure update.
Post wrangler
"Choose between the Food Select Feature or other Functions. If no food or function is chosen, Toast is the default."
User avatar
Gingerbread Man
Posts: 7735
Joined: January 30th, 2007, 10:55 am

Re: firefox - insecure update

Post by Gingerbread Man »

LoudNoise wrote:I doubt that they would joke about something trying to push an insecure update.

I didn't say it was a joke. I pointed out that not all Firefox messages are "professionally" worded.

The mesage itself is genuine: bug 583408, attachment "patch strings".

Sure enough, it has to do with a certificate failure, as I said above. And the spelling is correct to boot.
KWierso
Posts: 8829
Joined: May 7th, 2006, 10:29 pm
Location: California

Re: firefox - insecure update

Post by KWierso »

The mesage itself is genuine: bug 583408, attachment "patch strings".

Please be intentional... [-o<
User avatar
Alice
Posts: 2628
Joined: April 23rd, 2003, 11:47 am

Re: firefox - insecure update

Post by Alice »

Related bug report (note comments from Robert Strong):
https://bugzilla.mozilla.org/show_bug.cgi?id=653830
Bug 653830 - Popup notice Software Update - Update Failed - Something is trying to trick Firefox into accepting an insecure
Alice Wyman
Bald Eagle j99
Posts: 15
Joined: August 2nd, 2010, 3:28 am

Re: firefox - insecure update

Post by Bald Eagle j99 »

As a first step it would help if anyone seeing this screen error will check the firefox error console. If certificate errors are seen may I suggest you paste them into this thread.

Related bug report (note comments from Robert Strong):
https://bugzilla.mozilla.org/show_bug.cgi?id=653830
Bug 653830 - Popup notice Software Update - Update Failed - Something is trying to trick Firefox into accepting an insecure


It may help with that bug if someone is able to collect together error console reports from users with this problem, a recent comment from the developer
(Robert strong)
if there are 5 background check errors in a row then the ui is displayed. We need to find out why they are getting errors while checking (it affects both background and foreground checks though the message is only displayed after 5 background check errors). If it is possible to confirm that the majority are getting *.mozilla.org in the cert error then it is possibly an infrastructure issue.
John 99
Bald Eagle j99
Posts: 15
Joined: August 2nd, 2010, 3:28 am

Re: firefox - insecure update

Post by Bald Eagle j99 »

:D Progress is now being made on this bug see also for instance :
"FF4.0 is up to date, but says it fails to update"
http://forums.mozillazine.org/viewtopic.php?p=10815347#p10815347

Thanks for the input teoli2003
John 99
teoli2003
Posts: 5091
Joined: November 10th, 2005, 2:54 am
Contact:

Re: firefox - insecure update

Post by teoli2003 »

It would help if people with this problem can answer the question you linked:

Could the people experiencing the problem reports here and tell us if:
1) the app.update.url is wrong (aus2 instead of aus3).
2) if they have a firefox.js in the installation directory's defaults\prefs directory? (and if so, its content).

The dev need to understand why the pref is wrong for some people.
pcc322
Posts: 1
Joined: June 26th, 2011, 4:13 pm

Re: firefox - insecure update

Post by pcc322 »

Locked