On 12/6/11 4:44 AM, Desiree wrote: > I have all Comodo related certs untrusted in all browsers since December > 2008. I want to be alerted each time I go to a secure site that uses > Comodo. I will then decide on a per site, one time only, exception basis if > I wish to allow the exception or not. > > SM 2.5 has NO way to allow me to accept a Comodo cert used at Amazon.com > when logging in there. The cert is for "images-na.ssl-images-amazon.com". I > get an untrusted cert popup but all I can do is examine the cert. I cannot > accept it. That means that I do get logged in because the main cert for > Amazon is from Verisign and I have not disabled Verisign certs. But, because > I cannot accept the Comodo cert on a one time basis, I have no images at > Amazon after logging in. > > I have not tried other secure sites that use Comodo related certs with SM > 2.5 but I would assume that I will not be able to use ANY of those sites > with SM because there is no way to make a one time or permanent exception. > > Is this a known bug? > > >
On my SeaMonkey 2.5 installation (Windows XP), the images-na.ssl-images-amazon.com domain chains through intermediate certificate COMODO High-Assurance Secure Server CA to the root AddTrust External CA Root without any problem. The intermediate certificate is supplied by the amazon.com server, so that should not be any concern no matter what you might have done to COMODO root certificates. Check the trust bits for AddTrust External CA Root on your system to make sure "This certificate can identify web sites." is checked. -- David E. Ross <http://www.rossde.com/>. Anyone who thinks government owns a monopoly on inefficient, obstructive bureaucracy has obviously never worked for a large corporation. © 1997 by David E. Ross _______________________________________________ support-seamonkey mailing list [email protected] https://lists.mozilla.org/listinfo/support-seamonkey
