Avatar for Username

Hilfe durchsuchen

Vorsicht vor Support-Betrug: Wir fordern Sie niemals auf, eine Telefonnummer anzurufen, eine SMS an eine Telefonnummer zu senden oder persönliche Daten preiszugeben. Bitte melden Sie verdächtige Aktivitäten über die Funktion „Missbrauch melden“.

Learn More

Dieses Thema wurde archiviert. Bitte stellen Sie eine neue Frage, wenn Sie Hilfe benötigen.

Why are there still preinstalled MD2 Root Certs from verisign with FF3,4,5 ?

  • 3 Antworten
  • 2 haben dieses Problem
  • 187 Aufrufe
  • Letzte Antwort von cor-el

rootbash
rootbash
more options

Hi,

i added a verisign root certificate in the troubleshooting section. This cert is signed with an md2 hashing algorithm, as mentioned on the 26c3 in berlin 2009.

It's still enabled by default for WEB, Email and other.

I strongly suggest to remove it, like anyone else did.

Interesstingly, the cryto shell extention from windows says sha1 , but openssl does not mention sha1 at all. I think openssl is right :)

Hi, i added a verisign root certificate in the troubleshooting section. This cert is signed with an md2 hashing algorithm, as mentioned on the 26c3 in berlin 2009. It's still enabled by default for WEB, Email and other. I strongly suggest to remove it, like anyone else did. Interesstingly, the cryto shell extention from windows says sha1 , but openssl does not mention sha1 at all. I think openssl is right :)

Alle Antworten (3)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

See:

rootbash
rootbash Fragesteller
more options

Nice tool, but it doesn't answere or help with this problem/question.

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Do those certificates have a SHA1 fingerprint?

I do not think that Firefox will use the MD5 (MD2?) fingerprint if that is the case.