diff --git a/suite/locales/en-US/chrome/common/help/cert_dialog_help.xhtml b/suite/locales/en-US/chrome/common/help/cert_dialog_help.xhtml index 6e4708d53e4..26d4b7bb9bd 100644 --- a/suite/locales/en-US/chrome/common/help/cert_dialog_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/cert_dialog_help.xhtml @@ -85,7 +85,7 @@
  • Status Responder Certificate: Certificate used to identify an online status responder that uses the Online Certificate Status Protocol (OCSP) to check the validity of certificates. For more information about - OCSP, see Validation Settings.
  • + OCSP, see Validation Settings.
  • SSL Certificate Authority: Certificate used to identify a certificate authority—that is, a service that issues certificates for use as identification over computer networks.
  • diff --git a/suite/locales/en-US/chrome/common/help/help-index1.rdf b/suite/locales/en-US/chrome/common/help/help-index1.rdf index ec6a45c8953..d3baa2704ba 100644 --- a/suite/locales/en-US/chrome/common/help/help-index1.rdf +++ b/suite/locales/en-US/chrome/common/help/help-index1.rdf @@ -489,12 +489,12 @@ + nc:link="validation_help.xhtml#automatic_crl_update_preferences"/> + nc:link="validation_help.xhtml#manage_crls"/> + nc:link="validation_help.xhtml#privacy_and_security_preferences_validation"/> @@ -1674,7 +1674,7 @@ + nc:link="validation_help.xhtml#privacy_and_security_preferences_validation"/> @@ -2005,7 +2005,7 @@ + nc:link="validation_help.xhtml#validation_settings"/> @@ -2194,27 +2194,27 @@ + nc:link="validation_help.xhtml#automatic_crl_update_preferences"/> + nc:link="validation_help.xhtml#privacy_and_security_preferences_validation"/> + nc:link="validation_help.xhtml#manage_crls"/> + nc:link="validation_help.xhtml#privacy_and_security_preferences_validation"/> + nc:link="validation_help.xhtml#validation_settings"/> diff --git a/suite/locales/en-US/chrome/common/help/mail_sec_help.xhtml b/suite/locales/en-US/chrome/common/help/mail_sec_help.xhtml index e0572d205ad..729b1d9ca67 100644 --- a/suite/locales/en-US/chrome/common/help/mail_sec_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/mail_sec_help.xhtml @@ -408,11 +408,12 @@ message is digitally signed and if so, whether the signature is valid.

    If validation failed while OCSP was enabled, check the OCSP settings in - Privacy & Security - Preferences - Validation. If you are not familiar with OCSP, confirm the - settings with your system administrator. If your settings are correct, there - may be a problem with the OCSP service or the certificate used to create the - signature is no longer valid.

    + Privacy + & Security Preferences - Validation. If you are not familiar with + OCSP, confirm the settings with your system administrator. If your settings + are correct, there may be a problem with the OCSP service or the certificate + used to create the signature is no longer valid.

    If the signature is invalid because of a problem with a certificate's trust settings, you can use the Certificate Manager diff --git a/suite/locales/en-US/chrome/common/help/privsec_help.xhtml b/suite/locales/en-US/chrome/common/help/privsec_help.xhtml index 71618d586da..ea90b0f8947 100644 --- a/suite/locales/en-US/chrome/common/help/privsec_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/privsec_help.xhtml @@ -38,7 +38,7 @@

  • Master Passwords
  • SSL
  • Certificates
  • -
  • Validation
  • +
  • Validation
  • diff --git a/suite/locales/en-US/chrome/common/help/suite-toc.rdf b/suite/locales/en-US/chrome/common/help/suite-toc.rdf index 99fb9db766c..363a82daa7f 100644 --- a/suite/locales/en-US/chrome/common/help/suite-toc.rdf +++ b/suite/locales/en-US/chrome/common/help/suite-toc.rdf @@ -1014,7 +1014,7 @@ - + @@ -1032,10 +1032,10 @@ - - - - + + + + diff --git a/suite/locales/en-US/chrome/common/help/using_certs_help.xhtml b/suite/locales/en-US/chrome/common/help/using_certs_help.xhtml index 1b2749fbbfe..9601699355b 100644 --- a/suite/locales/en-US/chrome/common/help/using_certs_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/using_certs_help.xhtml @@ -404,7 +404,7 @@

    How Validation Works

    Managing CRLs

    Configuring OCSP

    -

    Validation Settings

    +

    Validation Settings

    @@ -425,7 +425,7 @@

    One way to combat this threat is for Certificate Manager to check a certificate revocation list (CRL) as part of the verification process (see Managing CRLs, below). Typically, you download a CRL to your browser by clicking a link. If a CRL is present, Certificate Manager checks any certificate issued by the same CA against the list as part of the verification process. -

    The reliability of CRLs depends on the frequency with which they are both updated by a server and checked by a client. You can configure your Automatic CRL Update Preferences so that a CRL will be updated automatically at regular intervals with the version currently on the server. +

    The reliability of CRLs depends on the frequency with which they are both updated by a server and checked by a client. You can configure your Automatic CRL Update Preferences so that a CRL will be updated automatically at regular intervals with the version currently on the server.

    Another way to combat the threat of compromised certificates is to use a special server that supports the Online Certificate Status Protocol (OCSP). Such a server can answer client queries about individual certificates (see Configuring OCSP, below). @@ -440,7 +440,7 @@

    This section describes how to import and manage CRLs.

    For background information, see How Validation Works. -

    For detailed descriptions of CRL settings that you can control, see Validation Settings.

    +

    For detailed descriptions of CRL settings that you can control, see Validation Settings.

    @@ -528,7 +528,7 @@
  • Under the Privacy & Security category, click Validation. (If no subcategories are visible, double-click Privacy & Security to expand the list.) -

    For information about the OCSP options available, see OCSP. +

    For information about the OCSP options available, see OCSP.

    Return to beginning of section ] diff --git a/suite/locales/en-US/chrome/common/help/validation_help.xhtml b/suite/locales/en-US/chrome/common/help/validation_help.xhtml index 39db8269460..3438bc1499c 100644 --- a/suite/locales/en-US/chrome/common/help/validation_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/validation_help.xhtml @@ -1,184 +1,267 @@ - + + + + %brandDTD; +]> + + Validation Settings - - - + - - - - +

    Validation Settings

    -

    Validation Settings

    +

    This section describes how to set Validation preferences and how to control + Certificate Revocation List (CRL) settings.

    -

    This section describes how to set Validation preferences and how to control Certificate Revocation List (CRL) settings. +

    For step-by-step descriptions of various tasks related to validation and + CRLs, see How + Certificate Validation Works.

    -

    For step-by-step descriptions of various tasks related to validation and CRLs, see How Certificate Validation Works. -

     

    +
    In this section: + +
    -
  • - - - -
    -

    In this section:

    -

    Privacy & Security Preferences - Validation

    -

    Manage CRLs

    -

    CRL Import Status

    -

    Automatic CRL Update Preferences

    -
    -

     

    +

    Privacy & Security + Preferences - Validation

    - - - - - -
    - - - - - - - -

    Privacy & Security Preferences - Validation

    - -

    This section describes how to use the Validation Settings panel. If you are not already viewing the panel, follow these steps: +

    This section describes how to use the Validation Settings panel. If you are + not already viewing the panel, follow these steps:

      -
    1. Open the Edit menu (Mozilla menu on Mac OS X) and choose Preferences. -
    2. Under the Privacy & Security category, click Validation. (If no subcategories are visible, double-click Privacy & Security to expand the list.) +
    3. Open the Edit menu (&brandShortName; menu on Mac OS X) and choose + Preferences.
    4. +
    5. Under the Privacy & Security category, click Validation. (If no + subcategories are visible, double-click Privacy & Security to expand + the list.)
    -

    For background information on certificate validation, see How Certificate Validation Works. - -

      - -

    CRL

    - -

    A certificate revocation list (CRL) is a list of revoked certificates that is generated and signed by a certificate authority (CA). It's possible to download a CRL to your browser, which can check it to ensure that certificates are still valid before permitting their use for authentication.

    - -

    Click Manage CRLs to see a list of the CRLs available to Certificate Manager. - -

    For more information about managing CRLs, see Managing CRLs. +

    For background information on certificate validation, see + How Certificate + Validation Works.

    -

      - -

    OCSP

    +

    CRL

    -

    The Online Certificate Status Protocol (OCSP) makes it possible for Certificate Manager to perform an online check of a certificate's validity each time the certificate is viewed or used. This process involves checking the certificate against a certificate revocation list (CRL) maintained at a specified web site. Your computer must be online for OCSP to work.

    +

    A certificate revocation list (CRL) is a list of revoked certificates that + is generated and signed by a + certificate authority + (CA). It's possible to download a CRL to your browser, which can + check it to ensure that certificates are still valid before permitting their + use for authentication.

    -

    To specify how Certificate Manager uses OCSP, choose one of these settings in the OCSP section of Validation Settings:

    +

    Click Manage CRLs to see a list of the CRLs available to Certificate + Manager.

    + +

    For more information about managing CRLs, see + Managing CRLs.

    + +

    OCSP

    + +

    The Online Certificate Status Protocol (OCSP) makes it possible for + Certificate Manager to perform an online check of a certificate's + validity each time the certificate is viewed or used. This process involves + checking the certificate against a certificate revocation list (CRL) + maintained at a specified website. Your computer must be online for OCSP to + work.

    + +

    To specify how Certificate Manager uses OCSP, choose one of these settings + in the OCSP section of Validation Settings:

    +

    Manage CRLs

    -
    - - - -

    Manage CRLs

    +

    This section describes how to use the Manage CRLs dialog box. To view it, + follow these steps:

    -

    This section describes how to use the Manage CRLs dialog box. To view it, follow these steps:

      -
    1. Open the Edit menu (Mozilla menu on Mac OS X) and choose Preferences. -
    2. Under the Privacy & Security category, click Validation. (If no subcategories are visible, double-click Privacy & Security to expand the list.) -
    3. Click Manage CRLs. +
    4. Open the Edit menu (&brandShortName; menu on Mac OS X) and choose + Preferences.
    5. +
    6. Under the Privacy & Security category, click Validation. (If no + subcategories are visible, double-click Privacy & Security to expand + the list.)
    7. +
    8. Click Manage CRLs.
    -

    This dialog box displays a list of the CRLs that you have downloaded for use by your browser. Typically, you download a CRL by clicking a URL. FOr information about how CRLs work, see Managing CRLs. +

    This dialog box displays a list of the + CRLs that you have + downloaded for use by your browser. Typically, you download a CRL by + clicking a URL. For information about how CRLs work, see + Managing CRLs.

    -

    To select a CRL, click it. You can then perform any of these actions: +

    To select a CRL, click it. You can then perform any of these actions:

    -

    The Manage CRLs dialog box provides the following information about each CRL: - -

    - -
    - - - -

    CRL Import Status

    - -

    This section describes how to use the CRL Import Status dialog box, which appears when you first attempt to import a CRL or when you successfully update it manually. - -

    This dialog box informs you -

    -

    If Automatic Update is not enabled, you can turn it on from here: - +

    The Manage CRLs dialog box provides the following information about each + CRL:

    + -
    - - - -

    Automatic CRL Update Preferences

    +

    CRL Import Status

    + +

    This section describes how to use the CRL Import Status dialog box, which + appears when you first attempt to import a CRL or when you successfully + update it manually.

    + +

    This dialog box informs you

    + + + +

    If Automatic Update is not enabled, you can turn it on from here:

    + + + +

    Automatic CRL Update Preferences

    + +

    This section describes how to use the Automatic CRL Update Preferences + dialog box. If you are not already viewing it, follow these steps:

    -

    This section describes how to use the Automatic CRL Update Preferences dialog box. If you are not already viewing it, follow these steps:

      -
    1. Open the Edit menu (Mozilla menu on Mac OS X) and choose Preferences. -
    2. Under the Privacy & Security category, click Validation. (If no subcategories are visible, double-click Privacy & Security to expand the list.) -
    3. Click Manage CRLs, then select the CRL whose auto update preferences you want to view or change. -
    4. Click Settings. +
    5. Open the Edit menu (&brandShortName; menu on Mac OS X) and choose + Preferences.
    6. +
    7. Under the Privacy & Security category, click Validation. (If no + subcategories are visible, double-click Privacy & Security to expand + the list.)
    8. +
    9. Click Manage CRLs, then select the CRL whose auto update preferences you + want to view or change.
    10. +
    11. Click Settings.
    -

    This dialog box displays the following options and information: +

    This dialog box displays the following options and information:

    +
  • Enable Automatic Update for this CRL: Select this option + if you want the CRL you selected to be updated automatically according to + the schedule you set here. (Note that you can't select this option if + the CRL doesn't specify a Next Update date.) -

    Click OK to confirm your choices. +

    If you enable Automatic Update, you must select one of these radio + buttons:

    + +
  • +
  • CRL would be imported from: Indicates the URL from which + the browser originally imported the CRL. This setting cannot be changed. To + specify a different location, delete the CRL and re-import it from the new + location.
  • +
  • Previous Consecutive Update Failures: Indicates how + many times update attempts for this CRL have failed consecutively, + including the most recent failure: + +
  • + +

    Click OK to confirm your choices.

    + +

    Copyright © 2003-2004 The Mozilla Foundation.

    - - -