Basil Chupin wrote:
On 16/06/12 22:25, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 2012-06-16 10:33, Basil Chupin wrote:
I am of the cautious type. Not paranoid, just cautious :-) .
When you setup a site with a certificate, you can go to a veritable certificate agency and buy one, for good money. Then it will work straight in any browser.
Or you can buy it from a cheaper agency - but it may happen that the said agency does not have its master certificate installed in all browsers:
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't.
Yes it does. Preferences->Advanced->Encryption->View Certificates
That opens the certificate manager which under "Authorities" will show you the collection of root certificates that is shipped with FF.
The list is also available here:
Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe".
That is something else, see http://perspectives-project.org/