how to ignore HSTS on Firefox?

Asked Jul 04 '22 at 12:44

Active Jul 06 '22 at 16:01

Viewed 545 times

am running Firefox 91.11.0esr and intentionally MITM'ing myself with Fiddler Proxy, and it works on websites not using HSTS, but breaks on HSTS sites. How can i tell firefox to ignore HSTS? googling suggest going to about:settings and setting

security.mixed_content.use_hstsc=false

but that seems to make no difference. (perhaps an old config option which was removed/renamed at some point?)

related question: how to ignore HSTS on Chrome?

edited Jul 06 '22 at 16:01

asked Jul 04 '22 at 12:44

hanshenrik

1,117
1
15
31

1

Why not just trust the Fiddler root certificate? – Daniel B Jul 04 '22 at 12:55
@DanielB i already tried that, and it does work on websites not using HSTS, but doesn't work on HSTS for some unknown reason. tried both the MakeCert and CertRoll certificate generators, same result on both :o – hanshenrik Jul 04 '22 at 13:17
Delete the browser cache, that eliminates the saved HSTS settings. – Robert Nov 10 '22 at 09:06

how to ignore HSTS on Firefox?

0 Answers0

Linked