Confirmed users, Administrators
5,526
edits
CA:FAQ: Difference between revisions
Jump to navigation
Jump to search
m
→Who decides which CA certificates to include in Mozilla products?
| Line 81: | Line 81: | ||
The [http://www.mozilla.org/projects/security/certs/policy/ Mozilla CA Certificate Policy] applies only to software products distributed by Mozilla, including the Mozilla Foundation and its subsidiaries. Other entities distributing such software are free to adopt their own policies. In particular, under the terms of the relevant Mozilla license(s) distributors of such software are permitted to add or delete CA certificates in the versions that they distribute, and are also permitted to modify the values of the "trust bits" on CA certificates in the default CA certificate set. As with other software modifications, by making such changes a distributor may affect its ability to use Mozilla trademarks in connection with its versions of the software; see the Mozilla trademark policy for more information. | The [http://www.mozilla.org/projects/security/certs/policy/ Mozilla CA Certificate Policy] applies only to software products distributed by Mozilla, including the Mozilla Foundation and its subsidiaries. Other entities distributing such software are free to adopt their own policies. In particular, under the terms of the relevant Mozilla license(s) distributors of such software are permitted to add or delete CA certificates in the versions that they distribute, and are also permitted to modify the values of the "trust bits" on CA certificates in the default CA certificate set. As with other software modifications, by making such changes a distributor may affect its ability to use Mozilla trademarks in connection with its versions of the software; see the Mozilla trademark policy for more information. | ||
=== How do I get my website's certificate to be trusted by Firefox? === | |||
If your certificates will be used to verify a small number of domains (e.g. *.yourcompany.com) but you want others outside of your organization to be able to browse to your website using https without having to manually import a root certificate, then you can get an SSL certificate or get a cross-signed certificate from one of the CAs who already have a root certificate [[CA:IncludedCAs|included in Firefox]]. | |||
Reference: https://developer.mozilla.org/docs/Mozilla/Security/x509_Certificates#CAs_included_in_Firefox | |||
=== Who decides which CA certificates to include in Mozilla products? === | === Who decides which CA certificates to include in Mozilla products? === | ||