Note: followups directed to mozilla.dev.tech.crypto. [EMAIL PROTECTED] wrote:
> I have seen that certificates are stored in the cert8.db file, below > the .mozialla directory in the users home directory. How do I add own root > certificates, or exchange certificates as an administrator, so that the > actual > user does not need to participate in the process, the best would be if the > user does not recognize the update of its certificate store. Now, think about what you proposed. If you could do it, then so could a bad guy. If you can install trusted root certs without user knowledge, using a web page or other page that the user visits with a URL, then so can the guy who is trying to conduct a MITM attack. User participation is essential to solving that vulnerability. > Does there exist a tool, so that I can manipulate this file via a shell > script Yes. certutil. Note that running a shell script involves user (or admin) participation. > or sth. like that? I am running the Firefox on Linux. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
