** Changed in: firefox Importance: Wishlist => Medium -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to firefox in Ubuntu. https://bugs.launchpad.net/bugs/72415
Title: cacert.org root certificate inclusion Status in Mozilla Firefox: Invalid Status in firefox package in Ubuntu: Won't Fix Status in firefox package in Debian: Invalid Bug description: Binary package hint: firefox i'd have thought that, for sure, this bug would exist. after much searching, i am unable to find it. the long and the short of it is that firefox (and epiphany!) packages on ubuntu should have the cacert.org root certificate included. the reasons for doing so are explained in this well-written mozilla bug report and many of its comments: https://bugzilla.mozilla.org/show_bug.cgi?id=215243 in comment #20 of that bug report, Frank Hacker <hec...@mozilla.org>, who claims to be "the person tasked with developing the mozilla.org policy on inclusion of root CA certs" approves the inclusion (2 and a half years ago!) but there has been considerable foot-dragging and objections from the person who would actually implement the change. before this comment, however (Frank was a bit slow with a reply) Chris Hoffman <chofm...@gmail.com> (mozilla engineering director) notes that "Distributors can add or delete certs and modify trust bits on certs in the default db.". i believe this to be a valid interim solution while upstream gets their stuff sorted out. there's a question of if the modified firefox will still be able to be branded as "mozilla firefox" but this is nothing that ubuntu isn't already dealing with. in any case, this does not affect epiphany. To manage notifications about this bug go to: https://bugs.launchpad.net/firefox/+bug/72415/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp