Hi all,
for signing PDFs with my SMIME certificate, another 3rd party software (LibreOffice) uses the Thunderbird profile folder (nssdb stored which is located there). A… (read more)
Hi all,
for signing PDFs with my SMIME certificate, another 3rd party software (LibreOffice) uses the Thunderbird profile folder (nssdb stored which is located there). After some investigation by myself, it could be a problem within Thunderbird certificate management itself.
Situation: I've a current and some outdated SMIME certificates for my mail address. But all for one mail address.
Because the current SMIME certificate is not accessible for LibreOffice, I removed temporary all of my outdated SMIME certificates from Thunderbird by the builtin certificate management, i.e. the list of my personal certificates was set to one entry (=the current certificate) in Thunderbird. But even then, LibreOffice lists only an outdated certificate (which is not visible anymore in the Thunderbird builtin certificate management).
Therefore I've checked with certutil the nssdb entries in the Thunderbird profile folder. Surprisingly, there is an outdated SMIME to my mail address contained (no further, even not the current one). Even after removal of those outdated certificates via the builtin certificate management. The current certificate is never listed; always only an outdated one.
This looks like a difference between builtin certificate management and nssdb within the profile folder (or may for another storage location of the certificates)?
certutil -L -d ~/.thunderbird/myprofilefolder --email mymailaddress
Thanks in advance!
Environment
OS: Ubuntu 24.04.2 LTS
Thunderbird: 128.12.0esr (64-Bit)