Yesterday we checked in a larger change to the trunk that affects secure
connections (SSL/TLS) in all Mozilla applications.
The new code is active whenever you access a site using a protocol like
https:// or imap+ssl or smtp+tls, etc.
The purpose of the change is to make OCSP (certificate validation) work
through proxies (see bug 111384).
When testing nightly trunk builds of Firefox, Thunderbird or SeaMonkey,
please report any regressions in bugzilla.mozilla.org to the
"Core/Security PSM" component.
Should the change have introduced regressions to SSL/TLS, you should run
into them, regardless whether you actually use the OCSP feature.
However, if you'd like to test further, feel free to enable the "Use
OCSP to validate certificates that specify an OCSP service URL" feature.
Even if you're behind a firewall that requires the use of a proxy, it
should work with latest nightly trunk builds.
To enable go to:
Firefox: Edit/Prefs/Advanced/Security/Verification
Thunderbird: Edit/Prefs/Privacy/Security/Verification
SeaMonkey: Edit/Prefs/Privacy&Security/Validation
Thanks for your help!
Kai
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
