Firefox 3 customizations to improve unknown SSL certificate handling

From LinuxServerTech

Firefox 3 is quite aggressive in trying to prevent you from 'accidentally' accepting a rogue certificate from a webserver. If you frequently work in an environment where many self-signed certificates are used -- you may eventually tire of answering the same 'accept this certificate' questions over & over. Note also that after clicking thru the acceptance process and examining the certificate, firefox then DEFAULTS TO PERMANENTLY STORING A CERTIFICATE IT DOESN'T TRUST! I think THAT is completely bogus...

Here's a recipe to remove a couple of clicks from the acceptance process and change that busted default so firefox doesn't default to saving your cert acceptance permanently...

1. Type 'about:config' in the url bar
2. Type 'cert' in the filter bar
3. Change 'browser.xul.error_pages.expert_bad_cert' to 'true' (This eliminates an extra click to expose the 'add exception' button on the initial page)

• Type 'ssl_over' in the filter bar * Change 'browser.ssl_override_behavior' to '2' (This causes firefox to pre-fetch the questionable ssl cert so you can subsequently examine it)

1. Go to https://addons.mozilla.org/en-US/firefox/addon/11368 and install the 'xulernia' extension. [currently, you will have to register to download it] (This changes the default for the 'permanently store this exception' to 'false'!)