OK - at least I did manage to accept certificate via Authorities: my cert did not had SAN, so despite CA was added it still wanted to get confirmation for exception. I have generated new certificate with SAN, signed with my CA and now TB doesn't ask about security exception.
san.cf file: subjectAltName=DNS:XXXXXXXX keyUsage=digitalSignature,keyEncipherment extendedKeyUsage=serverAuth XXXX replace with hostname like in CN. And when signing CSR with your CA add option -extfile san.cf and new certificate should be accepted w/o dialog (of course if you have added CA in TB Certificate Manage/Authorities.) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1904789 Title: [snap] Cannot confirm security exception for invalid certificate To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/thunderbird/+bug/1904789/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
