Closed Bug 1105374 Opened 5 years ago Closed 5 years ago

Turn off Websites and Code Signing trust bits for TC TrustCenter Class 3 CA II root certificate in NSS

Categories

(NSS :: CA Certificates Code, task)

task
Not set

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: kwilson, Unassigned)

References

Details

(Whiteboard: Websites and Code Signing Trust Bits turned off in Firefox 38)

From the old and new CA owners of this root: the SSL and code signing trust bits must be turned off. ... It must remain enabled for SMIME and client authentication only. 

So, please turn off the Websites and Code Signing trust bits for the following root certificate:

CN = TC TrustCenter Class 3 CA II
OU = TC TrustCenter Class 3 CA
O = TC TrustCenter GmbH
C = DE
SHA1 Fingerprint: 80:25:EF:F4:6E:70:C8:D4:72:24:65:84:FE:40:3B:8A:8D:6A:DB:F5

Note: This root certificate has been transferred from Symantec to DSV-Gruppe(S-TRUST).
Depends on: 1132496
Test builds of a development version of Firefox, which contain the requested change(s), can be found here:
https://ftp-ssl.mozilla.org/pub/mozilla.org/firefox/try-builds/kaie@kuix.de-cb8002df70cc/
I checked that the requested change has been made to the TC TrustCenter Class 3 II root.

If anyone else want to double-check the change, instructions are here:
https://wiki.mozilla.org/CA:How_to_apply#Testing_Inclusion
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
Whiteboard: Websites and Code Signing Trust Bits turned off in Firefox 38
You need to log in before you can comment on or make changes to this bug.