Eddy Nigg wrote, On 2008-09-16 11:46: > The CA certificate you referred above is signed by a CA root which is > included in NSS. Therefore the error you are seeing is a server side > installation failure and the server doesn't send the complete chain.
Thanks for noticing that, Eddy. > This has been a known issue with Mozilla based products and servers are > required to send the chain up to the root. I wouldn't call it a "known issue with Mozilla based products". It's a requirement of the SSL/TLS specifications. It's an issue with servers that are not configured to conform to those specifications. > Please contact the administrator of the site and ask to correct this > issue. Yes, that's the right solution. > By having a look at this root I realized that the purposes of the > certificate show in in Firefox for: > > SSL Server Certificate > Email Signer Certificate > Email Recipient Certificate > SSL Certificate Authority > Status Responder Certificate > > This is a builtin root! Nelson...can you check out those usages? That's what PSM shows for roots, Eddy. I imagine you're expecting it to say something like "Email Certificate Authority" and "Object Signing Certificate Authority". I agree it should. But it's a PSM UI issue, I believe. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
