Public bug reported: Binary package hint: firefox
i'd have thought that, for sure, this bug would exist. after much searching, i am unable to find it. the long and the short of it is that firefox (and epiphany!) packages on ubuntu should have the cacert.org root certificate included. the reasons for doing so are explained in this well-written mozilla bug report and many of its comments: https://bugzilla.mozilla.org/show_bug.cgi?id=215243 in comment #20 of that bug report, Frank Hacker <[EMAIL PROTECTED]>, who claims to be "the person tasked with developing the mozilla.org policy on inclusion of root CA certs" approves the inclusion (2 and a half years ago!) but there has been considerable foot-dragging and objections from the person who would actually implement the change. before this comment, however (Frank was a bit slow with a reply) Chris Hoffman <[EMAIL PROTECTED]> (mozilla engineering director) notes that "Distributors can add or delete certs and modify trust bits on certs in the default db.". i believe this to be a valid interim solution while upstream gets their stuff sorted out. there's a question of if the modified firefox will still be able to be branded as "mozilla firefox" but this is nothing that ubuntu isn't already dealing with. in any case, this does not affect epiphany. ** Affects: firefox (Ubuntu) Importance: Undecided Status: Unconfirmed -- cacert.org root certificate inclusion https://launchpad.net/bugs/72415 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
