Eddy Nigg (StartCom Ltd.) wrote: > Gervase Markham wrote: >> IdenTrust has applied to add some certs to the Mozilla root store, as >> documented in the following bug: >> https://bugzilla.mozilla.org/show_bug.cgi?id=359069 >> and in the pending certificates list here: >> http://www.mozilla.org/projects/security/certs/pending/ >> >> I have evaluated their request, as per the mozilla.org CA certificate >> policy: >> http://www.mozilla.org/projects/security/certs/policy/ >> and plan to approve this request in two weeks time. If you have any >> objections, or know of facts which might influence this decision, >> please make them known before then.
> Gerv, can you change the links of the certificates of > http://www.mozilla.org/projects/security/certs/pending/#IdenTrust to > something installable in Firefox? > > http://apps.identrust.com/roots/DSTROOTCAX3.cer seems to send the wrong > headers, even so the extension suggest to be DER encoded. The same is > true for > ldap://ldap.trustdst.com/cn=DST%20ACES%20CA%20X6,ou=DST%20ACES,o=Digital%20Signature%20Trust,c=US?cACertificate;binary > which doesn't seem to be supported by FF ;-) Try the attachments to the bug, bug 359069. Sad that mozilla clients no longer support downloading certs from ldap URLs. That was a very useful feature, long ago. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
