Hi list! I noticed a behavior that for my point of view looks strange in firefox certificate manager and I'm wondering if it's a bug or a feature. With firefox6, if I go into the certificate manager, under "Servers" tab, I find a list of 10 certificates which belong to "the USERTRUST Network" and really look like the famous Comodo ones (addons.mozilla.org, login.*.com, *. google.com and so on). Noticed this on last FF6 on both OSX and Linux and on debian iceweasel 3.5.19. Grepping e.g. login.live.com in firefox directory seems to link this to libnssckbi. Latest FF5 on MacOSX doesn't show that behavior. It's also interesting to note that those certificates can't be removed : if they are removed from the "Servers" tab, they go in "Others" tab and if they are removed from "Others", they vanish but reappear in "Others" when the window is reopened. Could you tell me why are they here ? The Internet was not really helpful...
Cheers, F. _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security