Vanwege onderhoudswerkzaamheden die uw ervaring zouden moeten verbeteren, heeft deze website beperkte functionaliteit. Als een artikel uw probleem niet verhelpt en u een vraag wilt stellen, kan onze ondersteuningsgemeenschap u helpen in @FirefoxSupport op Twitter en /r/firefox op Reddit.

Zoeken in Support

Vermijd ondersteuningsscams. We zullen u nooit vragen een telefoonnummer te bellen, er een sms naar te sturen of persoonlijke gegevens te delen. Meld verdachte activiteit met de optie ‘Misbruik melden’.

Meer info

Deze conversatie is gearchiveerd. Stel een nieuwe vraag als u hulp nodig hebt.

compromised certificates still present

  • 1 antwoord
  • 1 heeft dit probleem
  • 1 weergave
  • Laatste antwoord van cor-el

more options

I am running FF8. I realized recently that the full sweet of compromised certificates (global trustee, etc) was present in my usertrust network, and I thought it was perhaps because I migrated my profile from my old computer. So I completely uninstalled FF, removed all the remaining directories and reinstalled, and lo, they are still there in the usertrust network and Diginotar CAs etc still in Authorities. When I have deleted them from the trust network, they only re-appear in Others, and when I delete from there, they just reappear. Now, I know that for most of them, the trust has been removed, but for some of them they still had some level, if not full CA trust. What gives? If these certificates are indeed untrusted and blocked WHY ON EARTH are they not listed in some kind of Revoked list, and/or why are they still showing up in v8, making users like me spend hours trying to figure out if they are actually threats or not? Can anyone please advise?

I am running FF8. I realized recently that the full sweet of compromised certificates (global trustee, etc) was present in my usertrust network, and I thought it was perhaps because I migrated my profile from my old computer. So I completely uninstalled FF, removed all the remaining directories and reinstalled, and lo, they are still there in the usertrust network and Diginotar CAs etc still in Authorities. When I have deleted them from the trust network, they only re-appear in Others, and when I delete from there, they just reappear. Now, I know that for most of them, the trust has been removed, but for some of them they still had some level, if not full CA trust. What gives? If these certificates are indeed untrusted and blocked WHY ON EARTH are they not listed in some kind of Revoked list, and/or why are they still showing up in v8, making users like me spend hours trying to figure out if they are actually threats or not? Can anyone please advise?

Alle antwoorden (1)

more options

You can click the Edit button on the DigiNotar certificates to verify that all trust bits are unchecked.
That will make it impossible for them to be used as root certificates.

Select a DigiNotar certificate in the Certificate Manager.

  • Click the Edit button to verify that all trust bits are unchecked
  • Click the View button and go to Details to verify that the certificate has been deactivated (Explicitly Distrust DigiNotar Root CA)