Revision 16819 | Deleting the DigiNotar CA certificate | Troubleshooting

Revision Information

Revision id: 16819
Created: Aug 30, 2011, 3:34:55 PM
Creator: Cheng Wang
Comment: Firefox 6.0.1 is out, updating to use that as the primary instruction.
Reviewed: Yes
Reviewed: Aug 30, 2011, 3:35:26 PM
Reviewed by: Cww
Is approved? Yes
Is current revision? No
Ready for localization: Yes
Readied for localization: Aug 30, 2011, 3:35:26 PM
Readied for localization by: Cww

Revision Source

[http://blog.mozilla.com/security/2011/08/29/fraudulent-google-com-certificate/ Mozilla has learned] that a fraudulent [http://en.wikipedia.org/wiki/Ssl_certificate SSL certificate] for websites belonging to Google has been issued by [http://www.diginotar.com/ DigiNotar]. This is not a Firefox-specific issue and '''the certificate has now been canceled which should protect most people'''.

Mozilla has released [http://www.mozilla.org/en-US/firefox/new/ an updated version of Firefox]  to further protect you. Please update Firefox as soon as possible by following the steps in the [[Updating Firefox]] article.

If you need to manually delete the root certificate for DigiNotar, you can do so with the following steps:

# [[T:optionspreferences]]
# Click on the {menu Advanced} panel
# Select the {menu Encryption} tab
# Click {button View Certificates}
# In the '''Certificate Manager''' window, select the {menu Authorities} tab
# Scroll down to '''DigiNotar''' and select the '''DigiNotar Root CA'''
# Click {button Delete or Distrust...}
# Click {button OK} to confirm
#*Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it.
{for win}
[[Image:diginotar-win-1]]
{/for}
{for mac}
[[Image:diginotar-mac-1]]
{/for}
{for linux}
[[Image:diginotar-lin-1]]
{/for}

Revision Content

Mozilla has learned that a fraudulent SSL certificate for websites belonging to Google has been issued by DigiNotar. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people.

Mozilla has released an updated version of Firefox to further protect you. Please update Firefox as soon as possible by following the steps in the Update Firefox to the latest release article.

If you need to manually delete the root certificate for DigiNotar, you can do so with the following steps:

In the Menu bar at the top of the screen, click Firefox and then select Preferences or Settings, depending on your macOS version.Click the menu button and select Settings.
Click on the Advanced panel
Select the Encryption tab
Click View Certificates
In the Certificate Manager window, select the Authorities tab
Scroll down to DigiNotar and select the DigiNotar Root CA
Click Delete or Distrust...
Click OK to confirm
- Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it.

Ask a Question

Explore Our Help Articles

Mozilla Account

Search Support

Deleting the DigiNotar CA certificate