Basil Chupin wrote:
On 16/06/12 22:25, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 2012-06-16 10:33, Basil Chupin wrote:
I am of the cautious type. Not paranoid, just cautious :-) . When you setup a site with a certificate, you can go to a veritable certificate agency and buy one, for good money. Then it will work straight in any browser.
Or you can buy it from a cheaper agency - but it may happen that the said agency does not have its master certificate installed in all browsers:
[.......]
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't.
Yes it does. Preferences->Advanced->Encryption->View Certificates That opens the certificate manager which under "Authorities" will show you the collection of root certificates that is shipped with FF. The list is also available here: http://www.mozilla.org/projects/security/certs/included/
Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe".
That is something else, see http://perspectives-project.org/ -- Per Jessen, Zürich (23.7°C) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org