Bugzilla

(In reply to Dana Keeler [:keeler] (use needinfo?) from comment #38)
> if a user's traffic is being proxied through Superfish,
> blocking the certificate would prevent them from visiting any https site. It
> would then be difficult for the user to figure out what's wrong and how to
> fix it.

Do we have the ability to display a custom certerror screen for a particular blacklisted root?  (If not, maybe we should!)

> As I understand it, the EFF's data indicates that some Firefox users have
> seen certificates issued by the Superfish certificate. It doesn't indicate
> that it has been added to the root store as a trust anchor.

I could be wrong about how the SSL Observatory works, but I am under the impression that A implies B.