[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] TAILS versus TBB (Latest versions): Additional CA Certs appearing in TAILS browser. LEGIT or not ?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] TAILS versus TBB (Latest versions): Additional CA Certs appearing in TAILS browser. LEGIT or not ?
From: BM-2cUW5x4Ur6WBV9gr53QNfsv7RTLQXeS4p7@xxxxxxxxxxxxx
Date: Thu, 17 Oct 2013 11:14:58 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 Oct 2013 14:26:14 -0400
Dkim-signature: v=1; a=rsa-sha256; d=bitmessage.ch; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding; bh=3Lt5FaQhMScTdKiCAqjPTPfmu6yYma48TIR5/0SspNA=; b=n2Zs6T1zOCK/UOwb5JwW8QlWbB+8aD87ohG2eh4k3mDgEf4cXmW7r6TzAbVDuYUhdwZ4yDbGJETxyHg7Kp2nk7m8QhGKOaQ2Gxlv5waFSEu5E3ZKuThmW4zqVTuAx4CPEGyG/cIyZjP1fgzjPn2u9qOp0B9NBIjiSPHFDlXqq3w=
Importance: Normal
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.22


I have a question:

Tor Browser Bundle - Firefox ESR 17.0.9 (LATEST TOR)
Compared to: Iceweasel 17.0.9 (LATEST TAILS Linux distribution)

To be found in Tails (not found in TBB), some additional certificates:

DigiCert Inc -> DigiCert High Assurance EV CA-1
DigiCert Inc -> DigiCert High Assurance CA3
GeoTrust Inc. -> Google Internet Authority G2
StartCom Ltd. -> StartCom Class 2 Primary Intermediate Server CA
The Go Daddy Group, Inc -> Go Daddy Secure Certification Authority
The USERTRUST Network -> Gandi Standard SSL CA

All these are listed as "Software Security Device" certificaties.
The others are "Builtin Object Token" and baked in the browser.

Mozilla's documentation explains about "Software Security Devices":

"Software Security Device stores your certificates and keys that aren't
stored on external security devices, including any CA certificates that
you may have installed in addition to those that come with the browser. "

https://www.mozilla.org/projects/security/pki/psm/help_21/using_certs_help.html

Question is: did TAILS added some extra CA's ?

Looks funny...






-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] The NSA's problem? Too much data?
Next by Author: Re: [tor-talk] Silk Road taken down by FBI
Previous by thread: Re: [tor-talk] Linux + Tor
Next by thread: Re: [tor-talk] Tortilla
Index(es):
- Author
- Thread