Closed
Bug 310459
Opened 19 years ago
Closed 19 years ago
shows an error of Certificate Authority not trusted
Categories
(Core :: Security: PSM, defect)
Tracking
()
RESOLVED
INVALID
People
(Reporter: ramirom, Assigned: KaiE)
References
()
Details
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b4) Gecko/20050908 Firefox/1.4 AC Camerfirma root certificates were added (see 261778) but none of the intermediate CA were included. We whould like to introduce them in the CA trusted list Reproducible: Always Steps to Reproduce: 1.connect to https://www.camerfirma.com 2. 3. Actual Results: a warnning message is displayed Expected Results: go ahead without showing this message
|
||
Comment 1•19 years ago
|
||
I have a feeling this has something to do with the domain name for the certificate being *.camerfirma.com. This warning dialog is for other things besides an untrusted certificate, mind you.
|
Reporter | |
Comment 2•19 years ago
|
||
(In reply to comment #1) > I have a feeling this has something to do with the domain name for the > certificate being *.camerfirma.com. This warning dialog is for other things > besides an untrusted certificate, mind you. Can you try this instead "https://www.camaragipukoa.com" Thank you a lot
|
|
Reporter | |
Comment 3•19 years ago
|
||
(In reply to comment #1) > I have a feeling this has something to do with the domain name for the > certificate being *.camerfirma.com. This warning dialog is for other things > besides an untrusted certificate, mind you. sorry I was mistaked try https://www.camaragipuzkoa.com Regards
|
||
Comment 4•19 years ago
|
||
Only the root CA cert gets included. Are the intermediate certs being sent by the server? Over to the PSM component.
Assignee: nobody → kaie.bugs
Component: Security → Security: PSM
Product: Firefox → Core
QA Contact: firefox
Version: unspecified → 1.8 Branch
|
Assignee | |
Comment 5•19 years ago
|
||
A server can be configured to send multiple certificates, not just the server cert. In addition, it should send all intermediates required to chain up to the root. It is sufficient to have the topmost cert included in the browser.
|
|
Assignee | |
Comment 6•19 years ago
|
||
This bug is invalid, IMHO. We *never* store intermediate certificates in the Mozilla client. You must configure your server to send all required intermediate certs with the leaf cert.
Status: UNCONFIRMED → RESOLVED
Closed: 19 years ago
Resolution: --- → INVALID
You need to log in
before you can comment on or make changes to this bug.
Description
•