When distributing binary and source code versions of Firefox, Thunderbird, and other Mozilla and -related software products, Mozilla includes may include with such software a default set of X.509v3 certificates for various Certification Authorities (CAs). The certificates included by default are marked as being have their "trustedtrust bits" set for various purposes, so that Mozilla the software in question can use them automatically the CA certificates to verify certificates for SSL servers, S/MIME email users, and digitally-signed code signing objects without having to ask Mozilla users for further permission or information.
The purpose of this wiki page is to describe Mozilla CA Certificates Module and provide general background information regarding how Mozilla and related software (e.g., Firefox, Thunderbird, Camino, etc.) uses certificates.