Jan Steffen wrote:
I'm not too deep into this CA stuff, but there is http://www.cacert.org/ for example, which offers certificates for free.
CAcert.org's root certificate isn't (yet) included in Firefox by default, so CAcert.org couldn't serve for this purpose. Given the current status of their CA application, Firefox 3 is the earliest Firefox release in which CAcert.org could hope to be included.
However note if there's a consensus that we should move to signing extensions, especially those distributed under Mozilla auspices, and money is the only remaining issue in getting extensions signed, then I think there are ways to resolve that issue. This includes the possibility of having the Mozilla Foundation partially subsidize the purchase of code signing certs for volunteer contributors. (There are other possibilities as well; for example, we could also consider negotiating a group purchase of code signing certificates.)
Frank -- Frank Hecker [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
