On Fri, 04 Jan 2013 23:38:07 -0800 Yuri <[email protected]> wrote: > On 01/04/2013 19:13, J.R. Oldroyd wrote: > > For certificates that were distributed with the browser, you can > > click the "Edit" button and disable the three Trust boxes which > > essentially turns off the certificate. > > For the matter of testing, I disabled all Thawte* certificates. > And https://google.com still shows without a problem and says that > its identity is verified by Thawte SGC CA. > > Yuri
The certificate hierarchy for the google.com certificate shows that it is signed by the two "Verisign Class 3 Public Primary Certification Authority" certificates. If you uncheck the box for "Trust for verifying web sites" for these two certificates, then reload the https://google.com page, the browser is no longer able to verify the certificate. -jr _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-chromium To unsubscribe, send any mail to "[email protected]"
