On 03/17/2011 09:39 PM, From Ridley:
Could anyone make a suggestion on a Certificate Authority service company to use to purchase a certificate with the code/object signing capability needed to sign an XPI for Firefox to verify the author, with no need for the end user to have to install any intermediate certificates. [So that it trusted when attempting to install on Firefox with Mozilla's bundled collection of CA certificates]
Some misunderstanding here - intermediate CA certificates must be used by the signed and are provided together with the signature and certificate in one bag. The client doesn't have to have the intermediate CA certificates, it only must chain to a valid root however.
-- Regards Signer: Eddy Nigg, StartCom Ltd. XMPP: [email protected] Blog: http://blog.startcom.org/ Twitter: http://twitter.com/eddy_nigg -- dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
