Closed Bug 236675 Opened 20 years ago Closed 8 years ago

There is no way to reject permanently SSL certificate

Categories

(Core Graveyard :: Security: UI, enhancement)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Type:
enhancement
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: petri.koistinen, Unassigned)

References

(
URL
)

Details

User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040122 Debian/1.6-1
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040122 Debian/1.6-1

I removed all root certificates because I don't want trust nobody implicitly.
Now I notice that some server place nasty user tracking tools that use https,
see example URL. I want to permanenty reject for example ad.se.doubleclick.net
certificate, but that is not currently possible.

Reproducible: Always
Steps to Reproduce:
1. Remove all root certificates.
2. Notice nasty spyware.
3. Try to reject all spyware sites certificates
Actual Results:  
Can't reject certificates permanently. Spyware spies me or I manually reject all
certificates multiple times until my hand hurts.

Expected Results:  
One more option on "Website Certified by an Unknown Authority" requester:
...
( ) Permanently reject this certificate and do not connect to this Web site as
long as it has this certificate
                                           
                                         OK          Cancel         Help
->PSM
Assignee: security-bugs → kaie
Component: Security: General → Client Library
Product: Browser → PSM
Version: Trunk → 2.4
Product: PSM → Core
This is an automated message, with ID "auto-resolve01".

This bug has had no comments for a long time. Statistically, we have found that
bug reports that have not been confirmed by a second user after three months are
highly unlikely to be the source of a fix to the code.

While your input is very important to us, our resources are limited and so we
are asking for your help in focussing our efforts. If you can still reproduce
this problem in the latest version of the product (see below for how to obtain a
copy) or, for feature requests, if it's not present in the latest version and
you still believe we should implement it, please visit the URL of this bug
(given at the top of this mail) and add a comment to that effect, giving more
reproduction information if you have it.

If it is not a problem any longer, you need take no action. If this bug is not
changed in any way in the next two weeks, it will be automatically resolved.
Thank you for your help in this matter.

The latest beta releases can be obtained from:
Firefox:     http://www.mozilla.org/projects/firefox/
Thunderbird: http://www.mozilla.org/products/thunderbird/releases/1.5beta1.html
Seamonkey:   http://www.mozilla.org/projects/seamonkey/

Problem is still there.
*** Bug 322407 has been marked as a duplicate of this bug. ***
This bug is more serious than an enhancement due to the risks I outlined in Bug 322407.  Suggest change of severity.
see bug 101406.  Fixing that bug would improve the situation in this bug.
I believe that to solve the problem completely, this bug and bug 101406 need to be solved, providing that the dialog is fixed as I suggested so that it only blocks the relevant tab and not the entire browser window.
Confirming, I think this is a valid enhancement request.
Status: UNCONFIRMED → NEW
Ever confirmed: true
QA Contact: ui
Version: psm2.4 → 1.0 Branch
reassign bug owner.
mass-update-kaie-20120918
Assignee: kaie → nobody
We won't implement this feature in Firefox, but I did write an add-on that will do what I think you want: https://addons.mozilla.org/en-US/firefox/addon/red-jacket/
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → WONTFIX
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.