: K-Meleon Forum
You can talk about issues with k-meleon here.
[quote=guenter] [quote=gordon451] [quote=deadlock]You can provide a patch for users or build a GRE without those 200 certs[/quote] [url=https://blog.torproject.org/category/tags/ca-certificates]The full list is here[/url]. We should also disable Comodo CA, and enquire closely from Mozilla about its certificate. [/quote] 1.) AFAIK You do not need a list what DigiNotar certificates to disable. [quote="Wikipedia sub voce DigiNotar"] DigiNotar [b]was[/b] a Dutch certificate authority owned by VASCO Data Security International. On September 3, 2011, after it had become clear that a security breach had resulted in the fraudulent issuing of certificates, the Dutch government took over operational management of DigiNotar's systems. That same month, the company was declared bankrupt.... [b]The "DigiNotar Root CA"[/b] root was included in the trusted root lists of common internet client software but [b]has now been removed;[/b] the "Staat der Nederlanden" roots were and still are, because they were not compromised and other parts of that hierarchy continue to operate normally. [/quote] 2.) Comodo CA is a different matter & apparently handled the "Comodogate" incident more responsible. Referring to the compromised [url=http://en.wikipedia.org/wiki/Comodo_Group]Comodo CA certificates Wikipedia[/url] says. [quote="Wikipedia sub voce Comodo Group"] All of the certificates have been revoked. [/quote] More detailed info is at https://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html [quote="Comodo Group"] The 9 affected certificates have been revoked. [/quote][/quote]
K-Meleon forum is powered by