David E. Ross wrote, On 2008-11-01 11:16: > One financial institution where I have an account changed to an EV cert > two days ago. Does SeaMonkey 1.1.12 have the NSS to support EV certs?
EV was a new feature of FF3. It relies on a new version of NSS, NSS 3.12 but most of the work to support EV is in the browser, not in NSS. SM 1.1.x is essentially using the same networks security features as FF2. It uses NSS 3.11 and has no new UI features for EV. SM 2.0 alpha pre-release does use NSS 3.12, but it still does not support EV UI. Although I use SM trunk builds exclusively, I have never seen a "green bar" or the authenticated web site principal name or country name in the "chrome" anywhere. I see no difference between EV and non-EV sites in SM 2.x chrome. > If so, can I merely download and install the necessary root (assuming > it's approved through the Mozilla approval process)? It's probably not even necessary to download new roots. When we add new roots to NSS 3.12.x, we also add them to NSS 3.11.x (IINM). If the latest SM 1.x has the same roots as the latest FF 2.x (that is, if it's using the latest NSS 3.11.x), then it should have the same roots as in FF 3.x. If not, then of course you can always download new roots, whether they're approved by mozilla or not. But doing so won't give you EV UI in SM. That browser code just isn't being used (apparently) in any version of SM. > Follow-up set to mozilla.support.seamonkey. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
