user@laptop:~$ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 12.04.1 LTS
Release: 12.04
Codename: precise
user@laptop:~$ certutil -d ~/.mozilla/firefox/fk9tyf55.default -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
VeriSign Class 3 Extended Validation SSL CA ,,
Microsoft Internet Authority ,,
DigiCert High Assurance CA-3 ,,
Google Internet Authority ,,
Thawte SGC CA ,,
Akamai Subordinate CA 3 ,,
Microsoft Secure Server Authority ,,
Entrust Certification Authority - L1C ,,
VeriSign Class 3 Extended Validation SSL SGC CA ,,
RapidSSL CA ,,
VeriSign, Inc. ,,
USERTrust Legacy Secure Server CA ,,
VeriSign Class 3 Secure Server CA - G2 ,,
DigiCert High Assurance EV CA-1 ,,
VeriSign Class 3 Secure Server CA - G3 ,,
GeoTrust SSL CA ,,
Go Daddy Secure Certification Authority ,,
Created
January 2, 2013 17:24
-
-
Save anonymous/4436283 to your computer and use it in GitHub Desktop.
Is there a way to change the default SSL CA's for firefox BEFORE the profile is created on Ubuntu?
It could have something to do with them funding firefox... but forcing SSL certificates seems... wrong.
As I browsed other sites, the necessary CERTS were automatically added.... I feel violated.
I must be doing something wrong....
$ certutil -L -d .mozilla/firefox/*.default/
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
chef.training CT,,
Microsoft Internet Authority ,,
VeriSign Class 3 Extended Validation SSL CA ,,
Google Internet Authority ,,
VeriSign Class 3 Extended Validation SSL SGC CA ,,
Microsoft Secure Server Authority ,,
Akamai Subordinate CA 3 ,,
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As a user with no profile who hasn't launched firefox yet...
I am a bit confused why Google would be injected when I specifically started out with only one CA.