Bug#619900: libnss3-1d: impossible to disable cert. authorities for all users and programs
Stefan Gursky
scorpy_sk at yahoo.com
Mon Mar 28 11:20:07 UTC 2011
Package: libnss3-1d
Version: 3.12.9.with.ckbi.1.82-1
Severity: important
It seems that it is impossible to set any certification authority as "not
trusted" in such a way that all programs for all users accept it.
For example it is possible to set in iceweasel that certain authority should
not be trusted, but it does not propagate to icedove or chromium. And also
there seems to be no way to set it for all users (and all programs).
It would be nice to be able to change certificates included in libnssckbi.so
using dpkg-reconfigure or similar mechanism.
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.38-1-686 (SMP w/1 CPU core)
Locale: LANG=sk_SK.UTF-8, LC_CTYPE=sk_SK.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages libnss3-1d depends on:
ii libc6 2.11.2-11 Embedded GNU C Library: Shared lib
ii libnspr4-0d 4.8.7-2 NetScape Portable Runtime Library
ii libsqlite3-0 3.7.5-1 SQLite 3 shared library
ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime
libnss3-1d recommends no packages.
libnss3-1d suggests no packages.
-- no debconf information
More information about the pkg-mozilla-maintainers
mailing list