Deleting the DigiNotar CA certificate

[http://blog.mozilla.com/security/2011/08/29/fraudulent-google-com-certificate/ Mozilla has learned] that a fraudulent [http://en.wikipedia.org/wiki/Ssl_certificate SSL certificate] for websites belonging to Google has been issued by [http://www.diginotar.com/ DigiNotar]. This is not a Firefox-specific issue and '''the certificate has now been canceled which should protect most people'''. Mozilla will be releasing an update to Firefox to further protect you from this. Until the update is released you can manually delete this certificate with these steps: # [[T:optionspreferences]] # Click on the {menu Advanced} panel # Select the {menu Encryption} tab # Click {button View Certificates} # In the '''Certificate Manager''' window, select the {menu Authorities} tab # Scroll down to '''DigiNotar''' and select the '''DigiNotar Root CA''' # Click {button Delete or Distrust...} # Click {button OK} to confirm #*Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it. {for win} [[Image:diginotar-win-1]] {/for} {for mac} [[Image:diginotar-mac-1]] {/for} {for linux} [[Image:diginotar-lin-1]] {/for}

Mozilla has learned that a fraudulent SSL certificate for websites belonging to Google has been issued by DigiNotar. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people.

Mozilla will be releasing an update to Firefox to further protect you from this. Until the update is released you can manually delete this certificate with these steps:

1. In the Menu bar at the top of the screen, click Firefox and then select Preferences or Settings, depending on your macOS version.Click the menu button and select Settings.
2. Click on the Advanced panel
3. Select the Encryption tab
4. Click View Certificates
5. In the Certificate Manager window, select the Authorities tab
6. Scroll down to DigiNotar and select the DigiNotar Root CA
7. Click Delete or Distrust...
8. Click OK to confirm
   • Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it.