Join us and the lead editor of IRL, Mozilla's multi-award-winning podcast, for a behind-the-scenes look at the pod and to contribute your ideas for the next season, themed: "AI and ME." Mark your calendar and join our Community Call on Wednesday, Aug 7, 17:00–17:45 UTC. See you there!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Jei jums reikia pagalbos, užduokite naują klausimą.

The Diginotar certificate is on the list of accepted certificates in Mozilla 7.0. Is this an oversight or did my update not work as it should have?

  • 2 replies
  • 2 have this problem
  • 1 view
  • Paskiausią atsakymą parašė pravinpillai

pravinpillai
pravinpillai
more options

I am very confident that Diginotar was removed from the list accepted certificates in my desktop Windows version of Mozilla 6.0.2. However, when I was fooling around in the security options in Mozilla 7.0, I noticed that DigiNotar and DigiNotar B.V. were on the list of accepted certificates. I'm curious whether the updates made by 6.0.1 and 6.0.2 were undone by v. 7.0

I am very confident that Diginotar was removed from the list accepted certificates in my desktop Windows version of Mozilla 6.0.2. However, when I was fooling around in the security options in Mozilla 7.0, I noticed that DigiNotar and DigiNotar B.V. were on the list of accepted certificates. I'm curious whether the updates made by 6.0.1 and 6.0.2 were undone by v. 7.0

Chosen solution

You can click the Edit button on the DigiNotar certificates to verify that all trust bits are unchecked.
That will make it impossible for them to be used as root certificates.

Select a DigiNotar certificate in the Certificate Manager.

  • Click the Edit button to verify that all trust bits are unchecked
  • Click the View button and go to Details to verify that the certificate has been deactivated (Explicitly Distrust DigiNotar Root CA)
Skaityti atsakymą kartu su kontekstu 👍 0

All Replies (2)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Chosen Solution

You can click the Edit button on the DigiNotar certificates to verify that all trust bits are unchecked.
That will make it impossible for them to be used as root certificates.

Select a DigiNotar certificate in the Certificate Manager.

  • Click the Edit button to verify that all trust bits are unchecked
  • Click the View button and go to Details to verify that the certificate has been deactivated (Explicitly Distrust DigiNotar Root CA)
pravinpillai
pravinpillai Klausimą uždavęs asmuo
more options

Thanks! I did verify that all the trust bits were unchecked for DigiNotar and Staat der Nederlanden certificates. The Details tab for Staat der Nederlanden did not explicitly state as in the case of DigiNotar that the certificate had been deactivated, but I'm assuming that's not a big deal because all the trust fields are unchecked.