Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Why are fraudulent/fake certificates from DIGINOTAR and USERTRUST are still there in Firefox?

  • 1 reply
  • 1 has this problem
  • 8 views
  • Last reply by James

more options

While going through the certificates install in my firefox browser, it was observed that in the section servers fake certificates from Diginotar and other authorities are still active. Does not firefox update certificate revocation lists.

While going through the certificates install in my firefox browser, it was observed that in the section servers fake certificates from Diginotar and other authorities are still active. Does not firefox update certificate revocation lists.

All Replies (1)

more options

https://support.mozilla.org/en-US/questions/975404 Those are permanent block exceptions and shouldn't be removed. You can see that if you click the Edit button, so just leave them.

https://support.mozilla.org/en-US/questions/961004 There shouldn't be any DigiNotar certificates present under the Authorities tab in the Certificate Manager, but there should be permanent block entries under the Servers tab.

Modified by James