Add Option To Disable Root CA
Thanks for your great privacy-focused browser.
Could you add the option to disable built-in root CA? It would be helpful for us to minimize the risk of MitM attack and other security or privacy threats.
Not all CAs are trustworthy. Some are mismanaged like DigiNotar while some others are malicious like StartCom which was used to perform MitM to intercept communications to Google. However, it would be too late when such events are discovered unless we provide a way to prevent it.
As I know, there are still some CAs out there pose potential threats to security. Some even have got EV treatment.
Best Regards, Thomas Lewis
All Replies (1)
The people who answer questions here, for the most part, are other users volunteering their time (like me), not Mozilla employees or developers. If you want to leave feedback for developers, you can go to the Firefox Help menu and select either Share ideas and feedback… or Submit feedback…, depending on your Firefox version. Alternatively, you can use this link. Your feedback gets collected by a team of people who read it and gather data about the most common issues.
You can also file a bug report or feature request. See File a bug report or feature request for Mozilla products for details.