Wrong Owner Data for Domain and Owner verified SSL Certificates (Thawte/GeoTrust)

RESOLVED DUPLICATE of bug 429021

Status

()

Firefox
Security
--
major
RESOLVED DUPLICATE of bug 429021
10 years ago
10 years ago

People

(Reporter: Martin Fischer, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

10 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9) Gecko/2008052906 Firefox/3.0
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9) Gecko/2008052906 Firefox/3.0

Firefox 3.0 is displaying wrong owner data ("Unknown owner") for SSL certificates 
issued by Thawte and GeoTrust as GeoTrust's True Business ID and Thawte's Thawte SSL (both certs have owner verification, Firefox reports "unknown owner".
Both certs have domain and identity authentication and verification but Firefox 3.0 is reporting "unknown owner".




Reproducible: Always

Steps to Reproduce:
1. Click Url https://www.atvirtual.net/pgate/pgatep404.php
2. click on favicon.ico
3.
Actual Results:  
"Unknown owner"

Expected Results:  
"Pumpernig & Fischer OEG"
This dialog is poorly worded, but what it's trying to convey is that absent an "EV" cert there are no standards for CA's verifying the O information and therefore we have to assume the least-trusted case. This has been a bone of contention. Most closely a dupe of bug 429021, but see also bug 418694, bug 424182, and bug 417215
Group: security
Status: UNCONFIRMED → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 429021
You need to log in before you can comment on or make changes to this bug.