Perhaps, Eddy, StartCom's roots were only approved for SSL Certificate Authority. Did you not include a request for Email or Software Development bits?
-Kyle H On Wed, Sep 17, 2008 at 11:11 AM, Eddy Nigg <[EMAIL PROTECTED]> wrote: > On 09/17/2008 09:01 PM, Nelson Bolyard: >> I wouldn't call it a "known issue with Mozilla based products". >> It's a requirement of the SSL/TLS specifications. > > That's correct. > >> It's an issue with servers that are not configured to conform to those >> specifications. > > Right, but as I mentioned elsewhere, this educational exercise costs > some of the CAs using chained CA certificates (as recommended by > Mozilla) to loose customers (just watch for some promotional adds like > "issued directly from CA root" and such stuff...some users just turn > away and use a different CA instead because it "doesn't work" and shows > "not trusted") > >>> >>> SSL Server Certificate >>> Email Signer Certificate >>> Email Recipient Certificate >>> SSL Certificate Authority >>> Status Responder Certificate > > >> That's what PSM shows for roots, Eddy. I imagine you're expecting it >> to say something like "Email Certificate Authority" and "Object Signing >> Certificate Authority". I agree it should. But it's a PSM UI issue, >> I believe. > > I expect to see "SSL Certificate Authority" as then only purpose, the > same which I see for the StartCom roots. > > > -- > Regards > > Signer: Eddy Nigg, StartCom Ltd. > Jabber: [EMAIL PROTECTED] > Blog: https://blog.startcom.org > _______________________________________________ > dev-tech-crypto mailing list > dev-tech-crypto@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-tech-crypto > _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
