Closed Bug 451786 Opened 16 years ago Closed 2 years ago

signtool docs advise publishing your self-signed test code signing cert for others to import

Categories

(NSS :: Documentation, defect)

Product:
NSS
Component:
Documentation
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: nelson, Unassigned)

Details

The documentation for the signtool program (including the README file in the
sources) explains how to generate a self-signed test cert and output it to a
file named x509.cacert.  The reader is advised:

> x509.cacert can be published on a web page and imported into browsers 
> that visit that page.

recent postings in mozilla.dev.tech.crypto indicate that users are doing 
just that!

AAARRRGGGHHH!!!

In the process of migrating remaining bugs to the new severity system, the severity for this bug cannot be automatically determined. Please retriage this bug using the new severity system.

Severity: major → --
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.