Closed Bug 777049 Opened 12 years ago Closed 11 months ago

SSL Status should include whether Cert chains to builtin token

Categories

(NSS :: Libraries, enhancement, P5)

enhancement

Tracking

(Not tracked)

RESOLVED INACTIVE

People

(Reporter: devd, Unassigned)

Details

DPI solutions that MITM SSL traffic by adding new roots to the certdb are currently transparent to our users. It would be nice if Firefox could warn 'Your computer administrator might be spying on your communication' when the SSL server cert chains to a user-added root. For this, NSS should tell us when a cert is verified by user-added root.
Severity: normal → S3
Severity: S3 → N/A
Status: NEW → RESOLVED
Closed: 11 months ago
Priority: -- → P5
Resolution: --- → INACTIVE
You need to log in before you can comment on or make changes to this bug.