Revision 16828 | Deleting the DigiNotar CA certificate | Troubleshooting

Revision Information

Revision id: 16828
Created: Aug 30, 2011, 11:04:34 PM
Creator: Michael Verdi
Comment: made the update message stronger, linked directly to the manual update steps
Reviewed: Yes
Reviewed: Aug 30, 2011, 11:05:42 PM
Reviewed by: Verdi
Is approved? Yes
Is current revision? No
Ready for localization: Yes
Readied for localization: Aug 30, 2011, 11:05:42 PM
Readied for localization by: Verdi

Revision Source

[http://blog.mozilla.com/security/2011/08/29/fraudulent-google-com-certificate/ Mozilla has learned] that a fraudulent [http://en.wikipedia.org/wiki/Ssl_certificate SSL certificate] for websites belonging to Google has been issued by [http://www.diginotar.com/ DigiNotar]. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people.

{warning}'''Mozilla has released an update to Firefox to further protect you. Please update as soon as possible by following the steps in the [[Updating Firefox#w_how-do-i-manually-check-for-updates|Updating Firefox]] article.'''{/warning}

You can manually delete this certificate from any version of Firefox with these steps:

# [[T:optionspreferences]]
# Click on the {menu Advanced} panel
# Select the {menu Encryption} tab
# Click {button View Certificates}
# In the '''Certificate Manager''' window, select the {menu Authorities} tab
# Scroll down to '''DigiNotar''' and select the '''DigiNotar Root CA'''
# Click {button Delete or Distrust...}
# Click {button OK} to confirm
#*Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it.
{for win}
[[Image:diginotar-win-1]]
{/for}
{for mac}
[[Image:diginotar-mac-1]]
{/for}
{for linux}
[[Image:diginotar-lin-1]]
{/for}

Revision Content

Mozilla has learned that a fraudulent SSL certificate for websites belonging to Google has been issued by DigiNotar. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people.

Mozilla has released an update to Firefox to further protect you. Please update as soon as possible by following the steps in the Updating Firefox article.

You can manually delete this certificate from any version of Firefox with these steps:

In the Menu bar at the top of the screen, click Firefox and then select Preferences or Settings, depending on your macOS version.Click the menu button and select Settings.
Click on the Advanced panel
Select the Encryption tab
Click View Certificates
In the Certificate Manager window, select the Authorities tab
Scroll down to DigiNotar and select the DigiNotar Root CA
Click Delete or Distrust...
Click OK to confirm
- Because the certificate is "built-in" it will be distrusted but not deleted. Distrusting the certificate has the same effect as deleting it.

Ask a Question

Explore Our Help Articles

Mozilla Account

Search Support

Deleting the DigiNotar CA certificate