In Mozilla bug #215243, a lengthy debate has begun (via bug comments) whether CAcert's root certificate belongs in the Mozilla certificate database. At the present, the only new root certificates being added to the database have successful WebTrust audits, which is the primary cause of the debate since CAcert is a low-budget operation with free user certificates and cannot afford the audit. Some very lengthy rants have excessively lengthened the bug report, rants that belong here and not in the report.
A Mozilla Foundation policy has been drafted to address this issue. The policy provides for alternative approvals for root certificates, thus not tying Mozilla strictly to WebTrust. Approval of that policy is pending. In the meantime, a review of CAcert's policies and operations has begun in accord with the draft policy. It may be possible that the review may conclude about the same time the policy is approved and thus provide a test case of the policy. PLEASE: Make any further comments on this issue here and not in the bug report. Relevant links: <URL:https://bugzilla.mozilla.org/show_bug.cgi?id=215243> -- Bug report #215243: CAcert root cert inclusion into browser <URL:http://www.hecker.org/mozilla/ca-certificate-policy/> -- Mozilla CA Certificate Policy (draft) <URL:http://www.hecker.org/mozilla/ca-certificate-metapolicy/> -- Mozilla CA Certificate Metapolicy (draft) <URL:http://www.hecker.org/mozilla/ca-certificate-faq/> -- Mozilla CA Certificate FAQ -- David E. Ross <URL:http://www.rossde.com/> I use Mozilla as my Web browser because I want a browser that complies with Web standards. See <URL:http://www.mozilla.org/>. _______________________________________________ mozilla-crypto mailing list mozilla-crypto@mozilla.org http://mail.mozilla.org/listinfo/mozilla-crypto