There is no way to reject permanently SSL certificate

RESOLVED WONTFIX

Status

Core Graveyard
Security: UI
--
enhancement
RESOLVED WONTFIX
14 years ago
a year ago

People

(Reporter: Petri T. Koistinen, Unassigned)

Tracking

1.0 Branch

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

14 years ago
User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040122 Debian/1.6-1
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040122 Debian/1.6-1

I removed all root certificates because I don't want trust nobody implicitly.
Now I notice that some server place nasty user tracking tools that use https,
see example URL. I want to permanenty reject for example ad.se.doubleclick.net
certificate, but that is not currently possible.

Reproducible: Always
Steps to Reproduce:
1. Remove all root certificates.
2. Notice nasty spyware.
3. Try to reject all spyware sites certificates
Actual Results:  
Can't reject certificates permanently. Spyware spies me or I manually reject all
certificates multiple times until my hand hurts.

Expected Results:  
One more option on "Website Certified by an Unknown Authority" requester:
...
( ) Permanently reject this certificate and do not connect to this Web site as
long as it has this certificate
                                           
                                         OK          Cancel         Help

Comment 1

13 years ago
->PSM
Assignee: security-bugs → kaie
Component: Security: General → Client Library
Product: Browser → PSM
Version: Trunk → 2.4

Updated

13 years ago
Component: Security: UI → Security: UI
Product: PSM → Core
This is an automated message, with ID "auto-resolve01".

This bug has had no comments for a long time. Statistically, we have found that
bug reports that have not been confirmed by a second user after three months are
highly unlikely to be the source of a fix to the code.

While your input is very important to us, our resources are limited and so we
are asking for your help in focussing our efforts. If you can still reproduce
this problem in the latest version of the product (see below for how to obtain a
copy) or, for feature requests, if it's not present in the latest version and
you still believe we should implement it, please visit the URL of this bug
(given at the top of this mail) and add a comment to that effect, giving more
reproduction information if you have it.

If it is not a problem any longer, you need take no action. If this bug is not
changed in any way in the next two weeks, it will be automatically resolved.
Thank you for your help in this matter.

The latest beta releases can be obtained from:
Firefox:     http://www.mozilla.org/projects/firefox/
Thunderbird: http://www.mozilla.org/products/thunderbird/releases/1.5beta1.html
Seamonkey:   http://www.mozilla.org/projects/seamonkey/
(Reporter)

Comment 3

12 years ago
Problem is still there.

Comment 4

12 years ago
*** Bug 322407 has been marked as a duplicate of this bug. ***

Comment 5

12 years ago
This bug is more serious than an enhancement due to the risks I outlined in Bug 322407.  Suggest change of severity.

Comment 6

12 years ago
see bug 101406.  Fixing that bug would improve the situation in this bug.

Comment 7

12 years ago
I believe that to solve the problem completely, this bug and bug 101406 need to be solved, providing that the dialog is fixed as I suggested so that it only blocks the relevant tab and not the entire browser window.

Comment 8

11 years ago
Confirming, I think this is a valid enhancement request.
Status: UNCONFIRMED → NEW
Ever confirmed: true
QA Contact: ui
Blocks: 400732

Updated

9 years ago
Version: psm2.4 → 1.0 Branch

Comment 9

5 years ago
reassign bug owner.
mass-update-kaie-20120918
Assignee: kaie → nobody
We won't implement this feature in Firefox, but I did write an add-on that will do what I think you want: https://addons.mozilla.org/en-US/firefox/addon/red-jacket/
Status: NEW → RESOLVED
Last Resolved: a year ago
Resolution: --- → WONTFIX
(Assignee)

Updated

a year ago
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.