David Stutzman wrote:-Did you import the CA certs into mozilla and edit the trust settings for your root CA?
Yes, that was it, thanks a lot.
Well, that's a bug.
Mozilla should not require that you trust a CA in order to use a cert it emits as authentification.
This means anyone just has to give you a cert and tell you must use it to authentify to his site in order to have get his CA as trusted inside your certificate store.
As there is no trust flag specific to trusting for emitting authentification cert, I'm afraid that enabling the CA for authentification forces to enable it for other things you may not wish.
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
