This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Why is DigiNotar root certificate still in the list of trusted certificates?

  • 1 reply
  • 6 have this problem
  • 14 views
  • Last reply by cor-el

more options

From mozilla webpage: Mozilla has learned that a fraudulent SSL certificate for websites belonging to Google has been issued by DigiNotar. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people. Mozilla has released an update to Firefox to further protect you. Please update as soon as possible by following the steps in the Updating Firefox article.

I have uploaded and installed Firefox 6.0.2. There seems to be no more updates for Firefox. Therefore I would like to know why the DigiNotar root certificates are still in the list of trusted certificates.

From mozilla webpage: Mozilla has learned that a fraudulent SSL certificate for websites belonging to Google has been issued by DigiNotar. This is not a Firefox-specific issue and the certificate has now been canceled which should protect most people. Mozilla has released an update to Firefox to further protect you. Please update as soon as possible by following the steps in the Updating Firefox article. I have uploaded and installed Firefox 6.0.2. There seems to be no more updates for Firefox. Therefore I would like to know why the DigiNotar root certificates are still in the list of trusted certificates.

All Replies (1)

more options

You can click the Edit button on the DigiNotar certificates to verify that all trust bits are unchecked.

That will make it impossible for them to be used as root certificates.