Mikmorg wrote: > I am looking for a way to import a certificate into Firefox's cert8.db, > and key3.db files. > As far as I can tell, it uses PKCS #11. > > My main goal is to script the import of a CA for a new profile. > > I assume this could be done without much trouble in > org.mozilla.jss.pkcs11 somehow, but I have found very limited > documentation on the JSS package. I would appreciate any help towards > my goal.
Does the FireFox Client Customization Kit (CCK) do what you want? It creates a customized installer, which installs a version of FF that will have numerous customizations that you specify. These customizations will affect new profiles created by the installed version. You can add root CA certs in that customization. However there are some legal/redistribution issues you must consider if you do that. (In fact, these issues are not tied to the CCK, but to FireFox itself. If you change the set of root CA certs, then you have to be careful that your customized product is identified as something other than the generic FireFox.) Read about it at http://www.mozilla.org/projects/cck/ http://www.mozilla.org/projects/cck/firefox/ -- Nelson B _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
