Bug#699436: iceweasel: Rogue server certificates in fresh install
Samuel Hym
Samuel.Hym at gmail.com
Thu Jan 31 13:10:37 UTC 2013
Package: iceweasel
Version: 10.0.12esr-1
Severity: normal
Hello,
I freshly installed a system. In iceweasel, I got a suspicious list of server
certificates at the first start after installation (see attached screenshot).
I'm not sure to understand what this means, I find mozilla's handling of the
notion trust of little help. My understanding is that they shouldn't appear or
be marked as untrusted.
Best regards
Samuel
-- Package-specific info:
-- Extensions information
Name: Adblock Plus
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Package: xul-ext-adblock-plus
Status: enabled
Name: Certificate Patrol
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/CertPatrol at PSYC.EU
Package: xul-ext-certificatepatrol
Status: enabled
Name: DownThemAll!
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/{DDC359D1-844A-42a7-9AA1-88A850A938A8}
Package: xul-ext-downthemall
Status: enabled
Name: Espa��ol (AR) Language Pack locale
Location: /usr/lib/iceweasel/extensions/langpack-es-AR at iceweasel.mozilla.org.xpi
Package: iceweasel-l10n-es-ar
Status: enabled
Name: Espa��ol (Espa��a) Language Pack locale
Location: /usr/lib/iceweasel/extensions/langpack-es-ES at iceweasel.mozilla.org.xpi
Package: iceweasel-l10n-es-es
Status: enabled
Name: Firebug
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/firebug at software.joehewitt.com
Package: xul-ext-firebug
Status: enabled
Name: Firecookie
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/firecookie at janodvarko.cz
Package: xul-ext-firecookie
Status: enabled
Name: FirePath
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/FireXPath at pierre.tholence.com
Package: xul-ext-firexpath
Status: enabled
Name: Fran��ais Language Pack locale
Location: /usr/lib/iceweasel/extensions/langpack-fr at iceweasel.mozilla.org.xpi
Package: iceweasel-l10n-fr
Status: enabled
Name: Greasemonkey
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
Package: xul-ext-greasemonkey
Status: enabled
Name: HTTPS-Everywhere
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/https-everywhere at eff.org
Package: xul-ext-https-everywhere
Status: enabled
Name: NoScript
Location: /usr/share/mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/{73a6fe31-595d-460b-a920-fcc0f8843232}
Package: xul-ext-noscript
Status: enabled
Name: Predeterminado theme
Location: /usr/lib/iceweasel/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd}
Package: iceweasel
Status: enabled
-- Plugins information
Name: Gnome Shell Integration
Location: /usr/lib/mozilla/plugins/libgnome-shell-browser-plugin.so
Package: gnome-shell
Status: enabled
Name: iTunes Application Detector
Location: /usr/lib/mozilla/plugins/librhythmbox-itms-detection-plugin.so
Package: rhythmbox-plugins
Status: enabled
Name: Shockwave Flash
Location: /usr/lib/gnash/libgnashplugin.so
Package: browser-plugin-gnash
Status: disabled
-- Addons package information
ii browser-plugin 0.8.11~git20 amd64 GNU Shockwave Flash (SWF) player
ii gnome-shell 3.4.2-6 amd64 graphical shell for the GNOME des
ii iceweasel 10.0.12esr-1 amd64 Web browser based on Firefox
ii iceweasel-l10n 1:10.0.12esr all Spanish (Argentina) language pack
ii iceweasel-l10n 1:10.0.12esr all Spanish (Spain) language package
ii iceweasel-l10n 1:10.0.12esr all French language package for Icewe
ii rhythmbox-plug 2.97-2.1 amd64 plugins for rhythmbox music playe
ii xul-ext-adbloc 2.2.1-1 all Advertisement blocking extension
ii xul-ext-certif 2.0.14-3 all Certificate Monitor for Iceweasel
ii xul-ext-downth 2.0.15-1 all iceweasel extension with advanced
ii xul-ext-firebu 1.9.2~b2-1 all web development plugin for Icewea
ii xul-ext-fireco 1.4-1 all extension for Firebug to view and
ii xul-ext-firexp 0.9.7-1 all extension for Firebug to edit, in
ii xul-ext-grease 0.9.20-1 all extension that enables customizat
ii xul-ext-https- 2.0.5-1 all extension to force the use of HTT
ii xul-ext-noscri 2.1.4-1 all Javascript/plugins permissions ma
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=es_ES.utf8, LC_CTYPE=es_ES.utf8 (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)
Shell: /bin/sh linked to /bin/dash
Versions of packages iceweasel depends on:
ii debianutils 4.3.4
ii fontconfig 2.9.0-7.1
ii libc6 2.13-38
ii libgdk-pixbuf2.0-0 2.26.1-1
ii libglib2.0-0 2.33.12+really2.32.4-5
ii libgtk2.0-0 2.24.10-2
ii libnspr4 2:4.9.4-2
ii libnspr4-0d 2:4.9.4-2
ii libsqlite3-0 3.7.15.2-1
ii libstdc++6 4.7.2-5
ii procps 1:3.3.4-2
ii xulrunner-10.0 10.0.12esr-1
iceweasel recommends no packages.
Versions of packages iceweasel suggests:
ii fonts-stix [otf-stix] 1.1.0-1
ii libgssapi-krb5-2 1.10.1+dfsg-3
pn mozplugger <none>
Versions of packages xulrunner-10.0 depends on:
ii libasound2 1.0.25-4
ii libatk1.0-0 2.4.0-2
ii libbz2-1.0 1.0.6-4
ii libc6 2.13-38
ii libcairo2 1.12.2-2.1
ii libdbus-1-3 1.6.8-1
ii libdbus-glib-1-2 0.100-1
ii libevent-2.0-5 2.0.19-stable-3
ii libfontconfig1 2.9.0-7.1
ii libfreetype6 2.4.9-1.1
ii libgcc1 1:4.7.2-5
ii libgdk-pixbuf2.0-0 2.26.1-1
ii libglib2.0-0 2.33.12+really2.32.4-5
ii libgtk2.0-0 2.24.10-2
ii libhunspell-1.3-0 1.3.2-4
ii libjpeg8 8d-1
ii libmozjs10d 10.0.12esr-1
ii libnotify4 0.7.5-1
ii libnspr4-0d 2:4.9.4-2
ii libnss3-1d 2:3.14.1.with.ckbi.1.93-1
ii libpango1.0-0 1.30.0-1
ii libpixman-1-0 0.26.0-3
ii libreadline6 6.2+dfsg-0.1
ii libsqlite3-0 3.7.15.2-1
ii libstartup-notification0 0.12-1
ii libstdc++6 4.7.2-5
ii libvpx1 1.1.0-1
ii libx11-6 2:1.5.0-1
ii libxext6 2:1.3.1-2
ii libxrender1 1:0.9.7-1
ii libxt6 1:1.1.3-1
ii zlib1g 1:1.2.7.dfsg-13
Versions of packages xulrunner-10.0 suggests:
ii libcanberra0 0.28-6
ii libgnomeui-0 2.24.5-2
-- no debconf information
-------------- next part --------------
A non-text attachment was scrubbed...
Name: certman.png
Type: image/png
Size: 146087 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozilla-maintainers/attachments/20130131/4d600b6a/attachment-0001.png>
More information about the pkg-mozilla-maintainers
mailing list