Managing Certificates currently is still too complicated. I started to look into the issue, but there is a wall of complication before anyone who want's to know more about which certificates there are, where they come from, etc.
In this beginning post-Snowden era handling trust should be completely transparent and open to the user and she should be given understandable und easy-to-use options about who get's which trust. So yes, this bug is even more current then before, and handling of certificates should ne be underhanded in any way, the same applies to information disclosures, tracking, privacy, etc. The browser should offer all information about all certificates, and not only the certificates but also any details submitted during the certificate inclusion process, in an easy to use and easy to grasp manner. Chainings should be displayed in a graphical manner, and the details should be easily accessible and offered for inspection of just anybody. The problem with all this spying and privacy invasion stuff is not that it's totally hidden, but that it's difficult enough to access and see for common people who don't know enough about it, so the spies can act covertly because nobody can easily direct their attention to it. So that directing of attention should be facilitated by an easy to use, up to date and clear GUI. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/217269 Title: Firefox contains builtin certificate from ISP To manage notifications about this bug go to: https://bugs.launchpad.net/firefox/+bug/217269/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs