SecurityEngineering/mozpkix-testing: Difference between revisions

SecurityEngineering/mozpkix-testing (view source)

Revision as of 21:30, 13 October 2014

319 bytes added , 13 October 2014

→‎Request for Testing

Kathleen Wilson

Confirmed users, Administrators

5,526

edits

@@ Line 16: / Line 16: @@
 #* Download by selecting the .tar.bz2 (Linux), .dmg (Mac), or .exe (Windows) file.
 #* After downloading, extract and run this nightly browser, which will be called FirefoxNightly.
-# mozilla::pkix should be enabled by default. Ensure that it is by doing the following:
+# In Firefox 33 and later, mozilla::pkix is enabled by default, and there is no longer an about:config option to disable it.
+# In Firefox 31 and Firefox 32 mozilla::pkix is enabled by default, and there is an about:config option that can be used to disable and enable it. In Firefox 31 and Firefox 32 you can ensure that mozilla::pkix is enabled by doing the following:
 #* Open [http://kb.mozillazine.org/About:config about:config] in Firefox
 #* Locate the preference "security.use_mozillapkix_verification"
@@ Line 25: / Line 26: @@
 # Browse to various websites with known valid and expired/revoked/etc SSL certificates.
 #* Note to CAs: Be sure to check EV status, and check chains through all currently-used intermediate certs.
-# If you don't get the expected result, then try again without using mozilla::pkix to see if the unexpected result is actually due to mozilla::pkix.
+# If you don't get the expected result, then in Firefox 31 and Firefox 32 you can try again without using mozilla::pkix to see if the unexpected result is actually due to mozilla::pkix.
 #* In [http://kb.mozillazine.org/About:config about:config] toggle "security.use_mozillapkix_verification" to false
 #** Or switch to a previously released version of Firefox