Would someone please provide step-by-step instructions as to how to perform this procedure? I've spent some time looking for this "Avast! Web/Mail Shield Root" certificate, unsuccessfully. So the problem here is why it fails on your PC. For firefox, we insert the certificate into the firefox private store during the start of the browsers. So the fix, you've just performed is completely correct and the resulting state is exactly how it should be.įor chrome/IE we insert the certificate into the system store - that's why it works. The way how HTTPS scanning works absolutely requires every browser to have our certificate in its trusted list ( yes it is this one: "Avast! Web/Mail Shield Root" ) I didn't deliberately import it, so perhaps Avast inserted it correctly in Chrome but not in Firefox? However, I noted that Chrome already has the Avast! Root cert in it's collection. I checked the Chrome Browser and see no error messages when going to HTTPS sites. If I keep Avast HTTPS scanning enabled but then disable the trust of the imported "Avast! Web/Mail Shield Root" cert, I can always replicate the Firefox error message on HTTPS sites. I exported the Avast Mail Shield SSL certificate, imported it into the Firefox certification authorities, and then edited the trust settings of the cert to allow it to "identify web sites." on ALL https sites and discovered a workaround that MAY be the intended mode of operation: I'm seeing the same error message (sec_error_unknown_issuer) on Firefox 33.1 using Avast Internet 2015. Re: Websites not being trusted with avast 2015, any suggestions ? Some months back, there was an exchange on the "Avast Free/Pro/IS/Premier forum as follows: However, it seems to me that this is not good practice certainly not a permanent solution. There were suggestions that disabling https scanning is a workaround for this problem. The server might not be sending the appropriate intermediate certificates.Īn additional root certificate may need to be imported. The certificate is not trusted because the issuer certificate is unknown. As a result, it is not possible to add an exception for this certificate. This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely.
If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue. However, this site's identity can't be verified. Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. You have asked Firefox to connect securely to, but we can't confirm that your connection is secure. attempting to log into gmail) results in the error message below.Īvast 2015, version 10.14(44414), virus definitions 15082404, web shield 0/596įirefox 39.0, no extensions, OpenH264 1.4, and Shockwave Flash 18.0.0.209 plugins active with web shield activated) most web pages cannot be accessed from Firefox 39.0.