bassie a �crit :
In the process of testing the inclusion of the Dutch Government Root cert (bug 271585), we experienced the following.
We tried to read a signed email in TBird. We made sure that the signed message contained the intermediate CA certs. However, an error message in TBird showed up saying "Could not verify this certificate because the issuer is not trusted."
Please send me such a signed message. (You have to remove the NO and SPAM from my email address for it to work.)
It seems that TBird does not validate the certificate chain. We have a certificate hierarchy that consists of four CA certificates.
Could you send a sample ?
When I import the CA certificate that issued the end-user certificate TBird validates the signature, even without a Root CA in the certificate store!
This much is normal behaviour.
It is?
I'd sooner guess that TBird is automatically marking the imported CA cert as trusted. That would be a serious bug in TB.
-- Nelson B _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
