Te app.update.certs.* prefs define what certs we accept when checking for updates. At the moment, it doesn't compare against any intermediaries - which is apparently relatively common thing for CAs to use and change.
I should note, I don't know what (if any) security impact doing this would have.
Bug 920750 and bug 928489 will remove the cert checks for app update since we will be using mar signing as the method to prevent exploits so resolving as wontfix
Status: NEW → RESOLVED
Last Resolved: 4 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.