Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

On Monday the 3rd of March, around 5pm UTC (9am PT) users may experience a brief period of downtime while one of our underlying services is under maintenance.

Avatar for Username

搜尋 Mozilla 技術支援網站

防止技術支援詐騙。我們絕對不會要求您撥打電話或發送簡訊,或是提供個人資訊。請用「回報濫用」功能回報可疑的行為。

了解更多

此討論串已被封存。 如果您有需要幫助,請新增一個新問題

ssl signed by removed authority still trusted

sig100
sig100
more options

I raise this question because I am worrying about a CA authority WoSign, and now I decide to untrust all SLL certificate signed by WoSign.

Wosign 的 CA有问题,我准备不再信任它签发的证书。


I removed 'Wosign Class 4 EV Server CA G2' from authority list of Firefox, and the next time I review this setting, the authority reappears but all options under this authority (websites, emails , softwares) is unchecked , just as Firefox tech support says.

But when I visit https://www.wosign.com/ , this website still trusted by Firefox. Its certificate is signed by Wosign Class 4 EV Server CA G2, of which I removed the authority.

Can anybody tell me how to make Firefox untrust this CA , and show me alert when I visit any website with SSL certificate signed by Wosign  ? Thank you!

I raise this question because I am worrying about a CA authority WoSign, and now I decide to untrust all SLL certificate signed by WoSign. Wosign 的 CA有问题,我准备不再信任它签发的证书。 I removed 'Wosign Class 4 EV Server CA G2' from authority list of Firefox, and the next time I review this setting, the authority reappears but all options under this authority (websites, emails , softwares) is unchecked , just as Firefox tech support says. But when I visit https://www.wosign.com/ , this website still trusted by Firefox. Its certificate is signed by Wosign Class 4 EV Server CA G2, of which I removed the authority. Can anybody tell me how to make Firefox untrust this CA , and show me alert when I visit any website with SSL certificate signed by Wosign ? Thank you!

所有回覆 (1)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

I have to admit I don't really understand how this works. When I remove trust from the root certificate (screen shot #1), then reload the page, instead of not being trusted, there's another authority which is vouching for the untrusted one (screen shot #2). ??!!