Closed
Bug 384997
Opened 17 years ago
Closed 17 years ago
rewrite the documentation on 'When a web site requires a certificate' and 'Validation'
Categories
(Firefox Graveyard :: Help Documentation, defect)
Firefox Graveyard
Help Documentation
Tracking
(Not tracked)
RESOLVED
FIXED
Firefox 3 beta1
People
(Reporter: steffen.wilberg, Assigned: steffen.wilberg)
References
Details
Attachments
(1 file, 1 obsolete file)
3.92 KB,
patch
|
steffen.wilberg
:
review+
mconnor
:
approval1.9+
|
Details | Diff | Splinter Review |
Bug 382810 relabeled the "Verification" button in Options->Advanced->Encryption to "Validation".
Assignee | ||
Comment 1•17 years ago
|
||
Bug 110161 enabled OCSP by default and reworked the Validation options dialog.
Depends on: ocspdefault
Summary: document the new button label of Options-Advanced-Encryption-Verification: Validation → document the new Options-Advanced-Encryption-Validation (formerly Verification) dialog
Target Milestone: Firefox 3 → Firefox 3 M9
Assignee | ||
Comment 2•17 years ago
|
||
Replaced the "When a web site requires a certificate" and "Verification" paragraphs. The former was completely bogus; I learned from bug 395399 that that's really about personal certificates. A few (very few) sites use that instead of username/password to identify their users. That has nothing to do with secure (https) sites in general. See http://mxr.mozilla.org/seamonkey/source/suite/locales/en-US/chrome/common/help/certs_prefs_help.xhtml#51 for Seamonkey's explanation.
Assignee: nobody → steffen.wilberg
Status: NEW → ASSIGNED
Attachment #282887 -
Flags: review?(jwalden+fxhelp)
Comment 3•17 years ago
|
||
Comment on attachment 282887 [details] [diff] [review] patch >Index: mozilla/browser/locales/en-US/chrome/help/prefs.xhtml >+ encryption and decryption of connections to <a href= >+ "glossary.xhtml#secure_site">secure sites</a>.</p> Nit: move the href= to the second line. >+ certificate. In order to do so, they generate one for you and ask >+ &brandShortName; to store it. When you visit the site in the future, This is slightly incorrect; the following should be more correct: In order to do so, they ask &brandShortName; to generate one for you. The cert is generated client-side, and then Firefox sends the corresponding public key (the cert's the private key) to the server, but I don't think we really need that level of detail. Just saying the site tells Firefox to generate the cert is accurate and informative enough here. >- &brandShortName; verify the validity of your certificates using OCSP Ugh, we had a grammar problem here? I wonder how long that's been there; I bet it's pre-1.0. :-\ >+ OCSP server. Alternately, you can choose an OCSP server to validate all >+ certificates against. Click the <em>Validation</em> button to manage "OCSP server against which to validate all certificates" As it happens, MIT's infrastructure is one of those few sites that relies on certificates; I claim inexperience with the system causing the errors when I (?) originally wrote or reviewed this. ;-)
Attachment #282887 -
Flags: review?(jwalden+fxhelp) → review+
Assignee | ||
Comment 4•17 years ago
|
||
> >+ encryption and decryption of connections to <a href= > >+ "glossary.xhtml#secure_site">secure sites</a>.</p> > Nit: move the href= to the second line. Done. > >+ certificate. In order to do so, they generate one for you and ask > >+ &brandShortName; to store it. When you visit the site in the future, > > This is slightly incorrect; the following should be more correct: > > In order to do so, they ask &brandShortName; to generate one for you. Done. > The cert is generated client-side, and then Firefox sends the corresponding > public key (the cert's the private key) to the server No, the certificate is the public key: http://en.wikipedia.org/wiki/Public_key_certificate. But you're right, I've seen that little dialog displaying "generating a private key". However, that's not always the case: My email provider let me choose a password and then export my certificate to disk, from where I could import it into Firefox and Thunderbird. So they generated both the public and the private key. But I guess the more common case is the client-side key generation; the provider really shouldn't know my private key... Because of bug 398203 comment 4, I also changed the previous sentence to: "Some servers ask you to identify yourself with a personal certificate." ("servers" instead of "web sites" and "ask" instead of "requires") > >- &brandShortName; verify the validity of your certificates using OCSP > Ugh, we had a grammar problem here? I wonder how long that's been there; I bet > it's pre-1.0. :-\ No, that sentence has been rewritten in bug 341899 for 2.0... > >+ OCSP server. Alternately, you can choose an OCSP server to validate all > >+ certificates against. Click the <em>Validation</em> button to manage > "OCSP server against which to validate all certificates" Done.
Attachment #282887 -
Attachment is obsolete: true
Attachment #283933 -
Flags: review+
Assignee | ||
Updated•17 years ago
|
Summary: document the new Options-Advanced-Encryption-Validation (formerly Verification) dialog → rewrite the documentation on 'When a web site requires a certificate' and 'Validation'
Assignee | ||
Updated•17 years ago
|
Attachment #283933 -
Flags: approval1.9?
Updated•17 years ago
|
Attachment #283933 -
Flags: approval1.9? → approval1.9+
Assignee | ||
Comment 5•17 years ago
|
||
Checked in.
Status: ASSIGNED → RESOLVED
Closed: 17 years ago
Resolution: --- → FIXED
Comment 6•16 years ago
|
||
> Created an attachment (id=298960) [details]
> Patch (v1.1)
>
> -<!ENTITY certselect.description "When a web site requires a certificate:">
> +<!ENTITY certSelection.description "When a server requests my personal certificate:">
I noticed this line hasn’t changed in the Help doc yet. Wouldn’t it need to?
Assignee | ||
Comment 7•16 years ago
|
||
That's another bug. But we're switching to online help anyway, and that has already been updated: http://support.mozilla.com/en-US/kb/Options+window#Encryption_tab
Updated•8 years ago
|
Product: Firefox → Firefox Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•