DPI solutions that MITM SSL traffic by adding new roots to the certdb are currently transparent to our users. It would be nice if Firefox could warn 'Your computer administrator might be spying on your communication' when the SSL server cert chains to a user-added root. For this, NSS should tell us when a cert is verified by user-added root.
Per policy at https://wiki.mozilla.org/Bug_Triage/Projects/Bug_Handling/Bug_Husbandry#Inactive_Bugs. If this bug is not an enhancement request or a bug not present in a supported release of Firefox, then it may be reopened.
Status: NEW → RESOLVED
Last Resolved: 3 days ago
Resolution: --- → INACTIVE
You need to log in before you can comment on or make changes to this bug.