Oscar So wrote: > Is there a programmatical way to import a Trusted (Root CA) cert into > FireFox cert store besides through the PKCS#11 API ? > And, is there a programmtical way to edit the trust settings of a > Trusted (Root CA) cert ?
Not without user participation. If a web page could install new root CA certs and mark them trusted without the user explicitly OKing this act, it would be trivial for "bad guys" to install their own root CA certs and perform MITM attacks thereafter. > If none of the above works, how can I include our Trusted (Root CA) cert > into FireFox cert store under "Authority" ? In your own builds? certainly. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
