Using system SSL certificates...

Alex Merry kde at randomguy3.me.uk
Wed Feb 3 11:41:03 GMT 2010


On Wednesday 03 February 2010 05:52:26 Thiago Macieira wrote:
> The question is: why? Why doesn't Firefox carry VeriSign and Thawte
> certificates?

Well, the file you linked to on the mozilla servers lists three Thawte 
certificates and three VeriSign certificates.  But if I look at the 
Authorities section of Firefox's Certificate Manager there are a bunch more 
from each authority listed as "Builtin Object Token" (which I assume means 
that they were compiled in).

This is on Arch Linux.  The only modifications I can see to certificates via 
patches is the addition of cacerts.org certificates to the nss libraries.

So are Qt's extra certificates ones that (for some reason) aren't pulled out 
of the Mozilla XML file properly, ones that aren't in the XML file but are in 
Firefox (in which case, where do they come from?) or ones that aren't in 
Firefox at all?

Alex



-- 
Why have I got six monitors?  Because I haven't got room for eight.
  -- Terry Pratchett
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20100203/5ad3793a/attachment.sig>


More information about the kde-core-devel mailing list