Closed
Bug 122967
Opened 23 years ago
Closed 22 years ago
Editing trust of another person's cert must set correct trust
Categories
(MailNews Core :: Security: S/MIME, defect, P1)
Tracking
(Not tracked)
VERIFIED
FIXED
psm2.2
People
(Reporter: KaiE, Assigned: KaiE)
References
Details
Attachments
(1 obsolete file)
Make sure you have a cert in certificate manager other's tab, that is not trusted. Use the edit button and explicitly trust that cert. After you do that, signed emails from that person are still untrusted. Expected behaviour: Signed email should be trusted after that action. I think the reason is that manual edit adds the wrong trust bits. If you view the details of that cert, it says "cert has been verified for usage as SSL Server", which is not what we want.
Comment 2•23 years ago
|
||
Not to say that there isn't a bug here, but ssl server is displayed as a combination of the keyusage and the extended key usage, both of which are set in the cert (not editable). Newer certs from the intranet CA were tweaked to issue the correct extenstion in extended key usage so that the cert manager would not display ssl server (It did before)
Updated•23 years ago
|
Priority: -- → P1
Target Milestone: --- → 2.2
Comment 3•23 years ago
|
||
S/MIME bugs are automatically nsbeta1 candidates. (this is a bulk update - there may be some adjustment of the list).
Keywords: nsbeta1
Updated•22 years ago
|
Assignee | ||
Comment 4•22 years ago
|
||
I would like to make this nsbeta1+, because I think the fix will be very simple. At least, we should remove the edit button from the other's tab.
Assignee | ||
Comment 5•22 years ago
|
||
This patch removes the edit trust button from the email certs tab.
Assignee | ||
Comment 6•22 years ago
|
||
Javi, can you please review? As long as editing trust of email addresses is not implemented correctly, we should not display the edit button. This patch removes the edit button for now.
Comment 7•22 years ago
|
||
r=javi
Assignee | ||
Comment 8•22 years ago
|
||
Alec, can you please review the deactivation of a button in XUL (until we implement it correctly some time in the future).
Comment 9•22 years ago
|
||
Comment on attachment 75967 [details] [diff] [review] Suggested temporary fix sr=alecf
Attachment #75967 -
Flags: superreview+
Comment on attachment 75967 [details] [diff] [review] Suggested temporary fix a=roc+moz
Attachment #75967 -
Flags: review+
Attachment #75967 -
Flags: approval+
Assignee | ||
Comment 11•22 years ago
|
||
Temporary patch checked in. Removing nsbeta1+. Bug stays open until the feature gets implemented.
Keywords: nsbeta1+
Comment 13•22 years ago
|
||
cc cotter
Assignee | ||
Comment 14•22 years ago
|
||
*** Bug 130481 has been marked as a duplicate of this bug. ***
Comment 15•22 years ago
|
||
can you please obsolete the checked in patch so it doesn't show up on queries for approved and open patches? Thanks.
Assignee | ||
Comment 16•22 years ago
|
||
Comment on attachment 75967 [details] [diff] [review] Suggested temporary fix marking as obsolete, because it has been checked in.
Attachment #75967 -
Attachment is obsolete: true
Updated•22 years ago
|
QA Contact: alam → carosendahl
Assignee | ||
Comment 17•22 years ago
|
||
I'm closing this one, because somebody filed a bug on the inability to edit the trust of other's people, let's use the new bug 144435. Fixed, because editing trust is no longer possible.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
Comment 18•22 years ago
|
||
Verified - until functionality is correct, current specs disallow editing trust bits on OP certs.
Status: RESOLVED → VERIFIED
You need to log in
before you can comment on or make changes to this bug.
Description
•