Sitemap

About trust flags of certificates in NSS database that can be modified by certutil

3 min readJul 8, 2009

--

There are three available trust categories for each certificate, expressed in this order: “, , ”. In each category position use zero or more of the following attribute codes c,C,p,PT,u,w. The attribute codes for the categories are separated by commas.

These trust flags are allow overrides, they tell NSS that it is ok touse certificates for this purpose even though they may not seem like it is. There are two categories : Validity override and trust overrides.

--

--