[Bug 405017] [NEW] CA-13 and other DOD SSL certificates
whitis
whitis at freelabs.com
Sun Jul 26 19:57:40 UTC 2009
Public bug reported:
Binary package hint: firefox-3.0
Firefox needs to ship with CA-13 and other DOD SSL certificates
installed. These are widely used on army/DOD websites which often use
SSL even when it is entirely unnecessary.
It is problematic for the user to even install them manually, as they are not provided separately but as a windows executable:
https://www.dodpke.com/InstallRoot/files/InstallRoot_v3.12A.zip
Upstream: 6 clicks to deal with a self-signed, military, or other
unknown certificate is extremely unreasonable.
Here are some websites that will trigger the bug; they are also specifically related to finding the missing certificates.
https://help.us.army.mil/cgi-bin/akohd.cfg/php/enduser/std_adp.php?p_faqid=50
https://www.dodpke.com/InstallRoot
https://www.us.army.mil/suite/page/474113
There is a lot of public domain info on military sites.
Note: importing the four files on this page appears to include CA-13 and others but not all 73 certificates included in the executable file above.
http://dodpki.c3pki.chamb.disa.mil/rootca.html
ProblemType: Bug
Architecture: amd64
DistroRelease: Ubuntu 9.04
NonfreeKernelModules: nvidia
Package: firefox 3.0.12+build1+nobinonly-0ubuntu0.9.04.1
PackageArchitecture: all
ProcEnviron:
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: firefox-3.0
Uname: Linux 2.6.28-11-generic x86_64
** Affects: firefox-3.0 (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug
--
CA-13 and other DOD SSL certificates
https://bugs.launchpad.net/bugs/405017
You received this bug notification because you are a member of Mozilla
Bugs, which is subscribed to firefox-3.0 in ubuntu.
More information about the Ubuntu-mozillateam-bugs
mailing list