Этот сайт имеет ограниченную функциональность, пока мы проводим техническое обслуживание для улучшения его работы. Если какая-либо статья не решила вашу проблему и вы хотите задать вопрос, наше сообщество поддержки ждёт вас: @FirefoxSupport в Твиттере и /r/firefox на Reddit.

Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Подробнее

When should I delete a Certificate Authority that sounds suspiciously like I would never use it?

  • 3 ответа
  • 24 имеют эту проблему
  • 1 просмотр
  • Последний ответ от mct99

more options

When I opened the Certificate Manager under Tools/Options/Advanced, I found a long list of Certificate Authorities that looked very suspicious to me. For example, the first one was an outfit by the name of "TURKTRUST" with Turkish language names.

Where did this come from?

There are quite a few other "suspicious" looking CA names.

What happens if I delete them all?

When I opened the Certificate Manager under Tools/Options/Advanced, I found a long list of Certificate Authorities that looked very suspicious to me. For example, the first one was an outfit by the name of "TURKTRUST" with Turkish language names. Where did this come from? There are quite a few other "suspicious" looking CA names. What happens if I delete them all?

Выбранное решение

OK, Listen firefox developers: are YOU determining who I trust? I'm sorry, but I happen not to trust bigger corporations. It's part of the reason most people stepped over to Firefox. Besides, if for every 'secure' connection in the world browsers keep making connection to a very limited number of 'Certificate authorities' like 'Verisign'/eTrust' etc, then the CONNECTION might be secure, but the FACT that IP number xxx.xxx is connecting to (secure) website www.trytokeepasecret.org is 'leaked'. (as an average user is not informed or even aware that certificate issuers are connected to with every secure connection) And I feel that in fact... my privacyis breached.

Me connecting to a website is something between me and that website, and it's MY decicion wether or not i trust that website's certificate, and no business of a third party 'certificate issuer'. The list in Firefox is arbitrary, the users of Firefox should have a say in it. it is MY secure connection and not Firefox's! I DON'T trust Turktrust, or the rest of the list! And the fact that Firefox developers are trying to push this (telling me who to trust) through my throat makes me hate Firefox. In fact because of THIS issueI find Firefox itself is turning into an organization I don't trust anymore. Just look at that list! It's obvious anyone paying enough money (or blackmarket influence) can become a certificate issuer.

People @ Firefox: I'd like to be able to connect to ANY website that pleases me, comprende?

At the SAME TIME Firefox automatically CONNECTS to every advertising and tracking beacon on every website! (Breaching again my privacy!)

The only reason I still use Firefox is because of the addon 'requestpolicy' which is able to block connections to 3rd party websites. (TRY IT!) Why? Most websites use google analytics these days, and google gets connected for almost every website UNLESS you use requestpolicy! It's really an amazing feat how much information they are gathering without the main public realizing it.

Прочитайте этот ответ в контексте 👍 0

Все ответы (3)

more options

You can't remove them. You can edit them and remove the trusted bits, but there is no need to do that. Mozilla has a very strict policy about accepting root certificates.

See http://www.mozilla.org/projects/security/certs/policy/ - Mozilla CA Certificate Policy

more options

Выбранное решение

OK, Listen firefox developers: are YOU determining who I trust? I'm sorry, but I happen not to trust bigger corporations. It's part of the reason most people stepped over to Firefox. Besides, if for every 'secure' connection in the world browsers keep making connection to a very limited number of 'Certificate authorities' like 'Verisign'/eTrust' etc, then the CONNECTION might be secure, but the FACT that IP number xxx.xxx is connecting to (secure) website www.trytokeepasecret.org is 'leaked'. (as an average user is not informed or even aware that certificate issuers are connected to with every secure connection) And I feel that in fact... my privacyis breached.

Me connecting to a website is something between me and that website, and it's MY decicion wether or not i trust that website's certificate, and no business of a third party 'certificate issuer'. The list in Firefox is arbitrary, the users of Firefox should have a say in it. it is MY secure connection and not Firefox's! I DON'T trust Turktrust, or the rest of the list! And the fact that Firefox developers are trying to push this (telling me who to trust) through my throat makes me hate Firefox. In fact because of THIS issueI find Firefox itself is turning into an organization I don't trust anymore. Just look at that list! It's obvious anyone paying enough money (or blackmarket influence) can become a certificate issuer.

People @ Firefox: I'd like to be able to connect to ANY website that pleases me, comprende?

At the SAME TIME Firefox automatically CONNECTS to every advertising and tracking beacon on every website! (Breaching again my privacy!)

The only reason I still use Firefox is because of the addon 'requestpolicy' which is able to block connections to 3rd party websites. (TRY IT!) Why? Most websites use google analytics these days, and google gets connected for almost every website UNLESS you use requestpolicy! It's really an amazing feat how much information they are gathering without the main public realizing it.

Изменено pakmenu

more options

You can disable trust with any of the CAs if you prefer. It is up to you who you trust.

If you are concerned about privacy then I recommend the Ghostery addon. It blocks these privacy beackons.