We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Mozilla サポートの検索

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

詳しく学ぶ

このスレッドはアーカイブに保管されました。 必要であれば新たに質問してください。

are DigiNotar certificates safe, because it reads they are not trusted. can they be safely removed?

  • 4 件の返信
  • 1 人がこの問題に困っています
  • 1 回表示
  • 最後の返信者: cor-el

more options

in firefox options, privacy and security, certificates, there are 2 DigiNotar server certificates listed; DigiNotar Root CA and DigiNotar PKIoverheid CA Organisatie- G2.

about:preferences#privacy

in firefox options, privacy and security, certificates, there are 2 DigiNotar server certificates listed; DigiNotar Root CA and DigiNotar PKIoverheid CA Organisatie- G2. about:preferences#privacy

すべての返信 (4)

more options

hi 1scotch, firefox contains these diginotar certificates in order to know to actively distrust them in case it ever comes across them in the wild, so it's best to leave them in place.

more options

diginotar certificates have been distrusted for a long time like say 3.6.22

People have mistakenly thought they were trusted or should be removed simply because they were listed.


a comment from Bug 699759 - Firefox 7 still contains Diginotar certificates on ubuntu and debian

Instead of simply removing DigiNotar, we have added special DigiNotar replacement certificates, that have the effect of explicitly distrusting the old DigiNotar certificates.
more options

interesting. thank you gentlemen.

more options

See also:

(please do not comment in bug reports
https://bugzilla.mozilla.org/page.cgi?id=etiquette.html
)