Apache SSL very slow response with Firefox Freezes/Loads Very slow when checking self-signed SSL certificate

I was sure this was a Centos bug with OpenSSL, Apache, MySQL or even PHP.  I tried everything but nothing helped.  One clue is that if you check the Apache logs you will see nothing in the access logs until minutes later (this means Firefox has not even passed your request to the remote Apache/htttpd server).

When even accepting the invalid certificate message that would show up minutes later when trying to "View the Certificate" Firefox would freeze.  This bug is present in even the latest Firefox 53.

Eventually I realized it was just with Firefox and I suspected it was related to the self-signed SSL certificate even though I've had no problems before.

This is the key there is a weird Firefox bug where it cannot handle multiples of the exact same certificate so for example if you are generating completely standard OpenSSL certificates by hitting "Enter" all the way through this will be an issue.  There are also some embeded devices and appliances which do this.

What is the solution:

This is certainly a Firefox bug but it's also bad and poor practice to generate generic/default OpenSSL certificates.  The solution was to remake the self-signed SSL certificate by entering proper information.  Probably even entering a different CName or organization etc to make the cert unique would be all it would take.

Here is a discussion on the bug in Mozilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1056341


Tags:

apache, ssl, firefox, freezes, loads, certificatei, centos, openssl, mysql, php, logs, htttpd, server, accepting, invalid, certificate, quot, ve, multiples, generating, certificates, embeded, devices, appliances, generate, generic, default, remake, cname, etc, cert, mozilla, https, bugzilla, org, show_bug, cgi,

Latest Articles

  • Linux ln symlink how to update existing symbolic link
  • Ubuntu 18.04 / Linux Mint 19.1 Cannot Type or Login - solution
  • LUKS Hard Drive Encryption on Linux Mint Ubuntu Debian etc how to mount encrypted hard drive
  • How to use nmap locate other machines/computers/servers on your network using nmap
  • Linux Mint 18.2 Create Config File To Start Application Upon Login
  • Dell Wyse Thin Client BIOS Access Key
  • sudoers file in /etc warning about comments/includes!
  • Centos 7 Reallocate logical volume space to another
  • lvm how to reduce volume size
  • letsencrypt certbot error "Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80."
  • SSH error cannot Forward or Listen "bind: Cannot assign requested address"
  • X11 SSH Linux Forwarding Error
  • Using Microsoft's Group Policy Management Editor (GPME) To Change Default Permissions and Internet Explorer Security Settings
  • Thunderbird How To Disable An Email Account
  • iptables linux firewall recommended rules for public computing
  • LVM How To Create Pool (dynamically allocated and not fully allocated)
  • VMWare Pro Workstation Nic Disconnected and No IP Using NAT
  • Linux How To Create A RamDisk
  • mdadm force resync when resync=PENDING solution
  • Proxmox Breaks Storage/LVM Backing If Killing QEMU-IMG