DanID has requested that Mozilla remove their "TDC OCES CA" root certificate from NSS by December 31 2013. Note that only the email trust bit is enabled for this root certificate. This root directly signs certs for end users (not SSL servers) and is regulated by the Danish National Agency for Digitisation through the OCES Certificate Policies.
Peter, Please confirm that Nets-DanID has requested this root removal, and that the following root certificate is to be removed from NSS. Issuer: CN = TDC OCES CA O = TDC C = DK SHA1 Fingerprint: 87:81:C2:5A:96:BD:C2:FB:4C:65:06:4F:F9:39:0B:26:04:8A:0E:01
Status: NEW → ASSIGNED
I can confirm the removal af TDC OCES CA root certificate. For planning and migrating reasons, please do not remove the certificate before the end of 2013 as noted in desciption Peter Lind Damkjaer Nets DanID
Per comment #2, the first sentence in the Description should end "after December 31 2013", not "by December 31 2013".
(In reply to David E. Ross from comment #3) > Per comment #2, the first sentence in the Description should end "after > December 31 2013", not "by December 31 2013". Agreed!
Peter, The code patch for this root cert removal is in bug #957300. The test build is available at http://email@example.com/ I have tested it, but you are also welcome to do so as follows... Download a binary for your preferred operating system, you probably want one of the following files: try-linux/firefox-....en-US.linux-i686.tar.bz2 try-linux64/firefox-....en-US.linux-x86_64.tar.bz2 try-macosx64/firefox-....en-US.mac.dmg try-win32/firefox-....en-US.win32.zip Refer to https://wiki.mozilla.org/CA:How_to_apply#Testing_Inclusion Be sure to use a fresh profile. http://support.mozilla.org/en-US/kb/profile-manager-create-and-remove-firefox-profiles
done as part of bug 957300
Status: ASSIGNED → RESOLVED
Last Resolved: 4 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.