On 07/06/2009 01:44 AM, Nelson B Bolyard:
Sure, it's a bug. If the CA root is trusted in the "software security
device", its trust bits should not be overridden by the same CA
certificate on the token....but alas...
Is there a bug on file with a reproducible test case?
Yup.... https://bugzilla.mozilla.org/show_bug.cgi?id=474729
I'm not aware of any problem in that area.
The trust flags on certificates in the "software security device" token
apply to ALL identical copies of that certificate in any token(s) that
have it.
Yes, that's what I thought as well....but I found out after banging my
head against Thunderbird for a while it's better to remove the CA
certificate from my smart card.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
