Andrei Borzenkov schrieb:
I recently was given a URL that was signed by http://www.cacert.org; Firefox promptly displayed a warning about unknown issuer.
Is the site known? May be it could be included in certs installed by default?
This story is very long and winding, but the reason that CACert cannot be included in the Firefox root cert database is because CACert did never conclude an independent audit of their infrastructure. And their inability to do that for years sheds some questionable light onto them in general, as much as we like them because of them being community-driven and decentralized and all. See https://bugzilla.mozilla.org/show_bug.cgi?id=215243 and the thread listed in its whiteboard if you want to dig into the meant of this long-winded story. KaiRo -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org