Hi!
> It seems to me that mozilla decided (for Version 10 at least) to only
> allow plugin updates from https sites signed by builtin CA. How are all
> the sogo user using automatic updates? Do you use official certs only?
> are there users of self made cert chains for the update server?
We run our own PKI and use
|| force_bool_pref("app.update.cert.requireBuiltIn", false);
in integrator to allow updates from our site.
We, however, require our users to manually install our certificate
authority because we found no easy way to deploy our CA within Thunderbird
or remove some of the other CAs like cnnic. Mozilla and certificate
authorities is kind of a sad story...
-- Adi
--
[email protected]
https://inverse.ca/sogo/lists
