Opened 4 years ago

Closed 3 years ago

#15495 closed defect (duplicate)

Delete CNNIC Root in default please

Reported by: caution Owned by: tbb-team
Priority: Very High Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords: CNNIC
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Man-in-the-middle Attacks Enabled by CNNIC.CNNIC belongs to Chinese government,and China is a totalitarian country.

Child Tickets

Change History (6)

comment:1 Changed 4 years ago by gk

Resolution: wontfix
Status: newclosed

There are no plans to enter the good/bad CA decision business.

comment:2 Changed 4 years ago by cypherpunks

Resolution: wontfix
Severity: Normal
Status: closedreopened

comment:3 Changed 4 years ago by cypherpunks

related to #3929

comment:4 Changed 3 years ago by cypherpunks

There are no plans to enter the good/bad CA decision bus1n3ss.

You are already in it shipping the lists of root CAs with the browser.

comment:5 Changed 3 years ago by bugzilla

No way to remove built-in root CAs, but, maybe, make it untrusted by default?

comment:6 in reply to:  3 Changed 3 years ago by cypherpunks

Resolution: duplicate
Status: reopenedclosed

Replying to cypherpunks:

related to #3929

Not only related, this is a duplicate.

Note: See TracTickets for help on using tickets.