Nelson B wrote: > A certificate that you make for yourself, with your own play/pretend > CA, may look (superficially) like a real code signing cert from a > real CA, but it won't work like one for most browser users. You may > be able to get a few of your closest friends to download and trust > your own CA cert, but you wouldn't get the world at large to do so.
I was under the impression that this wasn't Cesar's primary goal, since he previously wrote that "I am trying to understand certificate authorities and how the process goes". So, for educational purposes, such a cert will do the trick. On the other hand, if the XPI file should be distributed to a larger audience, then of course you're perfectly right that a cert signed by a DIY CA is pretty useless. Kaspar _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
