I regularly interact with hundreds of SSL-enabled devices as part of my job. I don’t allow HTTP or telnet interfaces to devices that support HTTPS or SSH. These devices usually have self-signed certificates, and it is not always convenient (or possible, with some devices) to replace them with certs signed by the company’s root CA. This wasn’t a problem when all I had to do was bypass one error dialog. But then Firefox replaced this dialog with an extremely annoying 5-step dance. I’m tired of it.
Enter New MitM Me, a Firefox plugin to restore the old SSL error behaviour. Now Firefox still displays the “This Connection is Untrusted” page. But when you click the “Add Exception…” button, that’s it, you’re done.
I do not recommend that the average user install this plugin. For a casual user, this increases the chance of being defrauded. But if you are like me, if you truly know what you are doing and want to save some time, install it.
Has anyone hacked this plugin to restrict its behaviour to specific IP ranges, or to allow me to choose temporary or permanent with just one click?