WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2024 Poal.co

977

I started migrating over to LibreWolf but I get this email when connecting to Poal:

Secure Connection Failed

An error occurred during a connection to poal.co. The OCSP server experienced an internal error.

Error code: SEC_ERROR_OCSP_SERVER_ERROR

I've deleted cookies, cache, and everything I can think of to no avail. I know it's something on my end because I can connect using Brave, Ungoogled Chromium, Firefox, and Waterfox.

What do?

I started migrating over to LibreWolf but I get this email when connecting to Poal: > Secure Connection Failed > An error occurred during a connection to poal.co. The OCSP server experienced an internal error. > Error code: SEC_ERROR_OCSP_SERVER_ERROR I've deleted cookies, cache, and everything I can think of to no avail. I know it's something on my end because I can connect using Brave, Ungoogled Chromium, Firefox, and Waterfox. What do?

(post is archived)

[–] [Sticky] 0 pt

That's an issue with LW.

I'm getting "SEC_ERROR_OCSP_SERVER_ERROR". What can I do?#

We enable OCSP in hard-fail mode, meaning that if the revocation status of a certificate cannot be verified because the CA cannot be reached, then it will be treated as broken. While this improves security, it could also decreases usability as OCSP servers tend to be down often.

If you're experiencing this error:

OCSP servers tend to get blocked by host files and blocking lists by mistake, so check your firewall and blocking lists first.

OCSP is not compatible with most proxy and vpn extensions, so that's also something to consider.

If instead a server is actually down, you can consider disabling hard-fail mode in the LibreWolf settings, or using overrides.

https://librewolf.net/docs/faq/

You can do that with the solution below

You probably need to uncheck the setting at the bottom like that shows as set like I expected.

"When an OCSP server connection fails, treat the certificate as invalid"

https://support.mozilla.org/en-US/questions/898905#answer-279410

[–] 1 pt

That did it. Moving over to LW now.

[–] 0 pt

Isn't that a potential security nightmare though for anywhere not AOU honeypot?

[–] 0 pt

That isn't an issue on Poal side.

Read the linked LW faq.

[–] 0 pt

No no, I meant turning certificates off on his side directly. If that browser is his daily driver, not sure it's the best idea to uncheck a box you might forget to recheck

[–] 2 pts

From the sounds of it, it sounds like Librewolf has an internal issue with its own connection to the certificate server.. if every other browser connects without error, and your attempted the usual stuff to correct it on your end, it may just be a bug until the next patch

[–] 0 pt

I have used LibreWolf for more than a year, never had the same problem. Maybe it is because I use it on Ubuntu distro?