Closed
Bug 847588
Opened 11 years ago
Closed 10 years ago
Remove TDC OCES CA root certificate
Categories
(CA Program :: CA Certificate Root Program, task)
CA Program
CA Certificate Root Program
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: kathleen.a.wilson, Assigned: kathleen.a.wilson)
References
Details
DanID has requested that Mozilla remove their "TDC OCES CA" root certificate from NSS by December 31 2013. Note that only the email trust bit is enabled for this root certificate. This root directly signs certs for end users (not SSL servers) and is regulated by the Danish National Agency for Digitisation through the OCES Certificate Policies.
|
Assignee | |
Comment 1•11 years ago
|
||
Peter, Please confirm that Nets-DanID has requested this root removal, and that the following root certificate is to be removed from NSS. Issuer: CN = TDC OCES CA O = TDC C = DK SHA1 Fingerprint: 87:81:C2:5A:96:BD:C2:FB:4C:65:06:4F:F9:39:0B:26:04:8A:0E:01
Status: NEW → ASSIGNED
|
||
Comment 2•11 years ago
|
||
I can confirm the removal af TDC OCES CA root certificate. For planning and migrating reasons, please do not remove the certificate before the end of 2013 as noted in desciption Peter Lind Damkjaer Nets DanID
|
||
Comment 3•11 years ago
|
||
Per comment #2, the first sentence in the Description should end "after December 31 2013", not "by December 31 2013".
|
|
||
Comment 4•11 years ago
|
||
(In reply to David E. Ross from comment #3) > Per comment #2, the first sentence in the Description should end "after > December 31 2013", not "by December 31 2013". Agreed!
|
|
Assignee | |
Comment 5•10 years ago
|
||
Peter, The code patch for this root cert removal is in bug #957300. The test build is available at http://ftp.mozilla.org/pub/mozilla.org/firefox/try-builds/kaie@kuix.de-e9ed86288188/ I have tested it, but you are also welcome to do so as follows... Download a binary for your preferred operating system, you probably want one of the following files: try-linux/firefox-....en-US.linux-i686.tar.bz2 try-linux64/firefox-....en-US.linux-x86_64.tar.bz2 try-macosx64/firefox-....en-US.mac.dmg try-win32/firefox-....en-US.win32.zip Refer to https://wiki.mozilla.org/CA:How_to_apply#Testing_Inclusion Be sure to use a fresh profile. http://support.mozilla.org/en-US/kb/profile-manager-create-and-remove-firefox-profiles
|
||
Comment 6•10 years ago
|
||
done as part of bug 957300
Status: ASSIGNED → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
|
||
Updated•7 years ago
|
Product: mozilla.org → NSS
|
||
Updated•1 year ago
|
Product: NSS → CA Program
You need to log in
before you can comment on or make changes to this bug.
Description
•