Closed Bug 459589 Opened 14 years ago Closed 14 years ago

Dead link to CA listings at netscape.com

Categories

(SeaMonkey :: Help Documentation, defect)

defect
Not set
minor

Tracking

(Not tracked)

RESOLVED FIXED
seamonkey2.0a2

People

(Reporter: seamonkey, Assigned: stefanh)

References

Details

Attachments

(1 file)

User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1b2pre) Gecko/20081011 SeaMonkey/2.0a2pre reconfigured by user.js v1.1
Build Identifier:  

http://mxr.mozilla.org/comm-central/source/suite/locales/en-US/chrome/common/help/using_certs_help.xhtml#67

Above is a link to https://certs.netscape.com/ which just returns an error. The resource is no longer there.



Reproducible: Always
Setting to block the tracker bug so it won't get lost. If we should have a link to a list of CA:s, I'd prefer it to be a m.o address. There is http://www.mozilla.org/projects/security/certs/included/, but, as I understand it, they're already included. Ian, any thoughts/ideas?
Blocks: 423281
Status: UNCONFIRMED → NEW
Ever confirmed: true
(In reply to comment #1)
> Setting to block the tracker bug so it won't get lost. If we should have a link
> to a list of CA:s, I'd prefer it to be a m.o address. There is
> http://www.mozilla.org/projects/security/certs/included/, but, as I understand
> it, they're already included. Ian, any thoughts/ideas?
I'm not aware of that already being included and a quick search of our help code doesn't provide any hits either, that being the case I am happy for it to be changed, as you say it is better to be an m.o address.
(In reply to comment #2)
> (In reply to comment #1)
> > Setting to block the tracker bug so it won't get lost. If we should have a link
> > to a list of CA:s, I'd prefer it to be a m.o address. There is
> > http://www.mozilla.org/projects/security/certs/included/, but, as I understand
> > it, they're already included. Ian, any thoughts/ideas?
> I'm not aware of that already being included and a quick search of our help
> code doesn't provide any hits either, that being the case I am happy for it to
> be changed, as you say it is better to be an m.o address.

What I ment is that http://www.mozilla.org/projects/security/certs/included/ looks like a list of CA's that are providing the already included certificates in m.o products, not a 'general' list of CA's (that the old link possibly was refering to).
Version: unspecified → Trunk
Maybe it's best to remove that whole paragraph and not giving users any specific list of CAs -  I doubt we can find a general list of CA's that you can download certs from (also sounds scary to provide - I think you can't be sure that the certs will work flawlessly). It might be worth having the m.o link somewhere, though (as a list of CA's that provides the certs already included).
OK, so now I understand. In order for the certificate to be recognized, the CA has to have a root CA certificate included in the browser/product.
Correct me if I'm wrong since this is based on comment #5: If there is no root CA certificate, certificates from the CA won't be recognized (you'll get a warning - but you can probably skip the warning). I guess a user could install a root CA certificate, but I'm not convinced that we should mention that (who knows if it works and is safe etc).
Assignee: nobody → stefanh
Status: NEW → ASSIGNED
Attachment #343716 - Flags: review?(iann_bugzilla)
Attachment #343716 - Flags: review?(iann_bugzilla) → review+
Comment on attachment 343716 [details] [diff] [review]
Fix link and clarify that only certs from those CA's will be recognized

> <p>You can obtain a certificate today by visiting the URL for a certificate
>   authority and following the on-screen instructions. For a list of certificate
>-  authorities, see the online document
>-  <a href="https://certs.netscape.com/">Client Certificates</a>.</p>
>+  authorities issuing certificates recognized by &brandShortName;, see the
>+  online document
>+  <a href="http://www.mozilla.org/projects/security/certs/included/">Included
>+  Certificate List</a>.</p>
Seems to be alot of certificate(s) in one sentence but I cannot see an easy way of fixing that.
Pushed 676:edaf847ba874.
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
Target Milestone: --- → seamonkey2.0a2
You need to log in before you can comment on or make changes to this bug.