Feature #5870

Status:

Rejected

Priority:

Normal

Assignee:

Category:

Target version:

Start date:

Due date:

% Done:

Feature Branch:

Type of work:

Code

Blueprint:

Starter:

Affected tool:

Deliverable for:

Description

Non-commercial, ethical ISPs, such as the one who signed the data retention manifest, need to be better supported by Tails.

Our plans

Install the SSL certificates/CA for such servers (on the long run, we want them to use Monkeysphere but we’re not there yet).
Add bookmarks to the above-mentioned servers, in particular for quick’n’easy webmail access.

The necessary NSS *.db files are:

cert8.db: can be generated from scratch by adding our custom SSL CA and server certificates with certutil
secmod.db: if this file is missing, a new one is generated without DSA, SHA256 and SHA512; weird.
key3.db: if missing, the other *.db files can’t be used.

Subtasks

Related issues

Related to Tails - ~~Bug #6704~~: CAcert.org root certificate is not included anymore	Resolved	2014-02-17
Related to Tails - ~~Feature #7436~~: Contact Riseup on how we could help towards publishing a list of recommended email providers	Resolved	2014-06-22
Related to Tails - ~~Feature #5766~~: Web browser profile with no CA	Rejected
Related to Tails - ~~Feature #7685~~: Document alternative email providers	Rejected	2014-10-27
Related to Tails - ~~Bug #15895~~: Remove our predefined bookmarks	Resolved	2018-09-02

Subject changed from better support of non-commercial ISPs to Better support of non-commercial ISPs
Description updated
Starter set to No

related to ~~Feature #7436~~: Contact Riseup on how we could help towards publishing a list of recommended email providers added

> # Install the SSL certificates/CA for such servers

Thanks to Let’s Encrypt, this is obsolete.

> # Add bookmarks to the above-mentioned servers, in particular for quick’n’easy webmail access.

Looks like we’ve decided on ~~Bug #15895~~ to do the opposite.