On 2009-07-04 04:31 PDT, Eddy Nigg wrote: > On 07/04/2009 02:20 PM, Anders Rundgren: >>> It's not a good idea to place the CA certificate on the token because >> I think it is Firefox that's confusing. > > Sure, it's a bug. If the CA root is trusted in the "software security > device", its trust bits should not be overridden by the same CA > certificate on the token....but alas...
Is there a bug on file with a reproducible test case? I'm not aware of any problem in that area. The trust flags on certificates in the "software security device" token apply to ALL identical copies of that certificate in any token(s) that have it. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
