security issue: DigiNotar root certificate hacked

[Ted]

On chrome, you locate the cert. , but Delete is not option, so "Edit", 
allows you to uncheck what this cert. verifies.
Not sure why chrome doesn't allow one to just delete it.
Thanks for the info. I wonder if this is the first time a root cert got 
hacked?

-tl


On 09/07/2011 11:48 AM, D. Hugh Redelmeier wrote:
> Much security on the internet is based on a tree of digital certificates.
> The roots (note plural) are wired-in to browsers.
>
> The DigiNotar root certificate has been hacked so it should not be
> trusted.
>
> Browser updates will revoke the DigiNotar certificate.
>
> If you cannot update your browser, you can revoke DigiNotar's root
> certificate by hand.  I just did that on my desktop (which is running a
> Fedora that is no longer supported).
>
> In Firefox: Edit: Preferences: Advanced: Encryption: View Certificates:
> Scan down for DigiNotar.
> Click on the triangle next to it to open it up.
> Click on the only cert in it.
> Click Delete.
>
> I think that will do the job.  Better would be a Certificate Revocation
> List (CRL) entry, but I don't know how to do that.
> --
> The Toronto Linux Users Group.      Meetings: http://gtalug.org/
> TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists

--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists