Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

On 2010-07-21 18:26 PDT, Amax Guan wrote: Thank you very much, this really help alot:) We won't let end-users use that tool, instead, we put it in a installer, and let the installer do the dirty work. btw, Since this certutil.exe is downloaded from microsoft.com I'm a little worried

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

On 2010-07-21 16:26, Amax Guan wrote: Thank you very much, it's very helpful. I put most of the replies inline. On Wed, Jul 21, 2010 at 8:30 AM, Gervase Markham g...@mozilla.org mailto:g...@mozilla.org wrote: On 20/07/10 04:23, Amax Guan wrote: I've got a problem help

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

Hi Anders Thanks for your information. Do you know where I can download a windows binary of certutil.exe? On Wed, Jul 21, 2010 at 11:32 PM, Anders Rundgren anders.rundg...@telia.com wrote: On 2010-07-21 16:26, Amax Guan wrote: Thank you very much, it's very helpful. I put most of the

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

On 2010-07-21 17:57, Amax Guan wrote: Hi Anders Thanks for your information. Do you know where I can download a windows binary of certutil.exe? Hi Amax, Try this SDK which is supposed to contain certutil.exe as well:

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

Hi, The server using their own CA is in the certificate generation process, I wonder is it related to two-way SSL or something? If they use the web based solution to enroll certificates from CA, which is quite widely used, then why not to distribute the CA public certificate by the same page

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

On 21/07/10 07:26, Amax Guan wrote: I think basically it's because they have too much Cert to issue (One for each user), it cost too much money, and they do not want anyone else to know how many users they have, and their names, including the CA. Right. I am not suggesting that they get client

RE: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

@lists.mozilla.org Cc: Amax Guan Subject: Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox On 21/07/10 07:26, Amax Guan wrote: But if you generate a user Certificate that's issued by a untrusted CA, there will be an alert popup. Can some NSS or PSM hacker explain why

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

On 2010-07-21 10:50 PDT, Ryan Sleevi wrote, quoting Gervase Markham: On 21/07/10 07:26, Amax Guan wrote: But if you generate a user Certificate that's issued by a untrusted CA, there will be an alert popup. Can some NSS or PSM hacker explain why this is? Gerv While neither an NSS nor PSM

Re: Fwd: Hi, I have three questions about embed bank CA cert in Firefox

Hi Anders Thank you very much, this really help alot:) We won't let end-users use that tool, instead, we put it in a installer, and let the installer do the dirty work. btw, Since this certutil.exe is downloaded from microsoft.com, I'm a little worried about whether this certutil.exe is