[conspire] DigiNotar Damage Disclosure

Rick Moen rick at linuxmafia.com
Thu Sep 8 14:07:41 PDT 2011


Quoting Adrien Lamothe (alamozzz at yahoo.com):

> Just updated Firefox to the new build that clears out the DigiNotar
> certs, and was surprised to see some certificates with the common
> names "login.skype.com", "login.yahoo.com" and similar, with the
> organization name "Google Ltd.", org unit "Tech Dept.", issuer org
> "The USERTRUST Network". - ???

I'm not entirely sure what you're seeing, but just wanted to clarify
that, in Firefox, if you select a CA and say you want to remove it,
Firefox doesn't _literally_ remove the CA, but does mark it as untrusted
so that it is never believed as long as it's so marked.





More information about the conspire mailing list