ongoing help content updates to privacy & security sections, r=oeschger

extensions/help/resources/locale/en-US/glossary.html

@@ -75,7 +75,7 @@ The part of the browser that allows you to view and manage certificates. To view
 The process of renewing a <a href="glossary.html#1018895">certificate</a> that is about to expire.<P>
 </A>
 
-<A NAME="certificate_revocation_list (CRL)"></A><A NAME="1019940">
+<A NAME="certificate_revocation_list_(CRL)"></A><A NAME="1019940">
 <B>certificate revocation list (CRL).</B>&nbsp;
 </A><A NAME="1021047">
 A list of revoked certificates that is generated and signed by a <a href="glossary.html#1020903">certificate authority (CA)</a>. You can download the latest CRL to your browser or to a server, then check against it to make sure that certificates are still valid before permitting their use for authentication. <P>

extensions/help/resources/locale/en-US/glossary.xhtml

@@ -75,7 +75,7 @@ The part of the browser that allows you to view and manage certificates. To view
 The process of renewing a <a href="glossary.html#1018895">certificate</a> that is about to expire.<P>
 </A>
 
-<A NAME="certificate_revocation_list (CRL)"></A><A NAME="1019940">
+<A NAME="certificate_revocation_list_(CRL)"></A><A NAME="1019940">
 <B>certificate revocation list (CRL).</B>&nbsp;
 </A><A NAME="1021047">
 A list of revoked certificates that is generated and signed by a <a href="glossary.html#1020903">certificate authority (CA)</a>. You can download the latest CRL to your browser or to a server, then check against it to make sure that certificates are still valid before permitting their use for authentication. <P>

extensions/help/resources/locale/en-US/passwords_help.html

@@ -24,7 +24,7 @@
 <tr>
 <td class="inthissections">
 <p>In this section:</p>
-<p><a href="#passwords_first">Privacy &amp; Security Preferences - Web Passwords</a></p>
+<p><a href="#passwords_first">Privacy &amp; Security Preferences - Passwords</a></p>
 <p><a href="#Master_Password_Timeout">Privacy &amp; Security Preferences - Master Passwords</a></p>
 <p><a href="#Change_Master_Password">Change Master Password</a></p>
 <p><a href="#Reset_Master_Password">Reset Master Password</a>
@@ -35,12 +35,12 @@
 <a NAME="passwords:preferencesIDX"></a>
 <a NAME="passwords_first"></a>
 <hr>
-<h2>Privacy &amp; Security Preferences - Web Passwords</h2>
-<p>This section describes the Web Passwords preferences panel. If you're not already viewing it, follow these steps:
+<h2>Privacy &amp; Security Preferences - Passwords</h2>
+<p>This section describes the Passwords preferences panel. If you're not already viewing it, follow these steps:
 
 <ol>
 	<li>Open the Edit menu and choose Preferences.
-	<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+	<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 </ol>
 
 <p>&nbsp;
@@ -231,7 +231,7 @@
 
 
 <hr>
-<p><i>11 January 2002</i></p>
+<p><i>25 January 2002</i></p>
 <p>Copyright &copy; 1994-2002 Netscape Communications Corporation.</p>
 
 </body>

extensions/help/resources/locale/en-US/passwords_help.xhtml

@@ -24,7 +24,7 @@
 <tr>
 <td class="inthissections">
 <p>In this section:</p>
-<p><a href="#passwords_first">Privacy &amp; Security Preferences - Web Passwords</a></p>
+<p><a href="#passwords_first">Privacy &amp; Security Preferences - Passwords</a></p>
 <p><a href="#Master_Password_Timeout">Privacy &amp; Security Preferences - Master Passwords</a></p>
 <p><a href="#Change_Master_Password">Change Master Password</a></p>
 <p><a href="#Reset_Master_Password">Reset Master Password</a>
@@ -35,12 +35,12 @@
 <a NAME="passwords:preferencesIDX"></a>
 <a NAME="passwords_first"></a>
 <hr>
-<h2>Privacy &amp; Security Preferences - Web Passwords</h2>
-<p>This section describes the Web Passwords preferences panel. If you're not already viewing it, follow these steps:
+<h2>Privacy &amp; Security Preferences - Passwords</h2>
+<p>This section describes the Passwords preferences panel. If you're not already viewing it, follow these steps:
 
 <ol>
 	<li>Open the Edit menu and choose Preferences.
-	<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+	<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 </ol>
 
 <p>&nbsp;
@@ -231,7 +231,7 @@
 
 
 <hr>
-<p><i>11 January 2002</i></p>
+<p><i>25 January 2002</i></p>
 <p>Copyright &copy; 1994-2002 Netscape Communications Corporation.</p>
 
 </body>

extensions/help/resources/locale/en-US/privacy_help.html

@@ -29,7 +29,7 @@
 <p><a href="using_priv_help.html#using_cookies">Using the Cookie Manager</a></p>
 <p><a href="using_priv_help.html#using_password">Using the Password Manager</a></p>
 <p><a href="using_priv_help.html#using_forms">Using the Form Manager</a></p>
-<p><a href="using_priv_help.html#using_encrypt">Encrypting Stored Sensitive Information</a></p>
+<p><a href="using_priv_help.html#using_encrypt">Encrypting Stored Sensitive Information</a><p><a href="using_priv_help.html#managing_images">Managing Images</a></p>
 </td>
 </tr>
 </table>
@@ -239,10 +239,10 @@ search engine to find them---try search words such as &quot;anonymous&quot; and
 
 <hr>
 
-<p><i>7/13/2001</i></p>
+<p><i>25 January 2002</i></p>
 
 <hr>
-<p>Copyright &copy; 1998-2001 The Mozilla Organization.</p>
+<p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>
 </html>

extensions/help/resources/locale/en-US/privacy_help.xhtml

@@ -29,7 +29,7 @@
 <p><a href="using_priv_help.html#using_cookies">Using the Cookie Manager</a></p>
 <p><a href="using_priv_help.html#using_password">Using the Password Manager</a></p>
 <p><a href="using_priv_help.html#using_forms">Using the Form Manager</a></p>
-<p><a href="using_priv_help.html#using_encrypt">Encrypting Stored Sensitive Information</a></p>
+<p><a href="using_priv_help.html#using_encrypt">Encrypting Stored Sensitive Information</a><p><a href="using_priv_help.html#managing_images">Managing Images</a></p>
 </td>
 </tr>
 </table>
@@ -239,10 +239,10 @@ search engine to find them---try search words such as &quot;anonymous&quot; and
 
 <hr>
 
-<p><i>7/13/2001</i></p>
+<p><i>25 January 2002</i></p>
 
 <hr>
-<p>Copyright &copy; 1998-2001 The Mozilla Organization.</p>
+<p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>
 </html>

extensions/help/resources/locale/en-US/using_certs_help.html

@@ -26,7 +26,7 @@
 <p><a href="#using_certs_manage">Managing Certificates</a></p>
 <p><a href="#using_certs_devices">Managing Smart Cards and Other Security Devices</a></p>
 <p><a href="#using_certs_ssl">Managing SSL Warnings and Settings</a></p>
-<p><a href="#using_certs_validation">Managing Validation Settings</a></p>
+<p><a href="#using_certs_validation">Controlling Validation</a></p>
 <p><a href="#using_certs_settings">Certificate Settings</a></p>
 </td>
 </tr>
@@ -334,7 +334,7 @@
 <a NAME="certificates:validationIDX"></a>
 <a NAME="validation,_of_certificates:aboutIDX"></a>
 
-<hr><h1>Managing Validation Settings</h1>
+<hr><h1>Controlling Validation</h1>
 
 <p>As discussed above under <a href="#using_certs_get">Get Your Own Certificate</a>, a certificate is a form of identification, much like a driver's license, that you can use to identify yourself over the Internet and other networks. However, also like a driver's license, a certificate may be expired or invalid for some other reason. Therefore, your browser software needs to confirm the validity of any given certificate in some way before trusting it for identification purposes. 
 
@@ -347,6 +347,7 @@
 <p><a href="#How_Certificate_Validation_Works">How Validation Works</a></p>
 <p><a href="#Managing_CRLs">Managing CRLs</a></p>
 <p><a href="#Configuring_Certificate_Manager_for_OCSP">Configuring OCSP</a></p>
+<p><a href="validation_help.html">Validation Settings</a></p>
 </td>
 </tr>
 </table>
@@ -361,43 +362,102 @@
 
 <p>Whenever you use or view a certificate stored by Certificate Manager, it takes several steps to verify the certificate. At a minimum, it confirms that the CA's digital signature on the certificate was created by a CA whose own certificate is (1) present in the Certificate Manager's list of available CA certificates and (2) marked as trusted for issuing the kind of certificate being verified. 
 
-<p>If the CA certificate is not itself present, the <a href="glossary.html#certificate_chain">certificate chain</a> for the CA certificate must include a higher-level CA certificate that is present and correctly trusted. Certificate Manager also confirms that the certificate being verified has not been marked as untrusted in the certificate store. If any one of these checks fails, Certificate Manager marks the certificate as unverified and won't recognize the identity it certifies.
+<p>If the CA certificate is not itself present, the <a href="glossary.html#certificate_chain">certificate chain</a> for the CA certificate must include a higher-level CA certificate that is present and correctly trusted. Certificate Manager also confirms that the certificate being verified is currently marked as trusted in the certificate store. If any one of these checks fails, Certificate Manager marks the certificate as unverified and won't recognize the identity it certifies.
 
 <p>A certificate can pass all these tests and still be compromised in some way; for example, the certificate be revoked because an unauthorized person has gained access to the certificate's private key. A compromised certificate can allow an unauthorized person (or web site) to pretend to be the certificate owner.
 
-<p>One way to combat this threat is for Certificate Manager to check a certificate revocation list (CRL) as part of the verification process (see <a href="#Managing_CRLs">Managing CRLs</a>, below). Typically, you download a CRL to your browser by clicking a link. If a CRL is present, Certificate Manager checks each certificate issued by the same CA against the list. The reliability of CRLs is subject to the frequency with which they are both updated by a server and checked by a client, and their size can sometimes cause delays in the verification process that may not be acceptable to some people.
+<p>One way to combat this threat is for Certificate Manager to check a certificate revocation list (CRL) as part of the verification process (see <a href="#Managing_CRLs">Managing CRLs</a>, below). Typically, you download a CRL to your browser by clicking a link. If a CRL is present, Certificate Manager checks any certificate issued by the same CA against the list as part of the verification process. 
 
-<p>Another way to combat this threat is to use a special server that supports the Online Certificate Status Protocol (OCSP). Such a server can answer client queries about individual certificates (see <a href="#Configuring_Certificate_Manager_for_OCSP">Configuring Certificate Manager for OCSP</a>, below). The server, called an OCSP responder, receives an updated CRL periodically from the CA that issues the certificates to be verified. You can configure Certificate Manager to submit a status request for a certificate to the OCSP responder, and the OCSP responder confirms whether the certificate is valid.  
+<p>The reliability of CRLs is subject to the frequency with which they are both updated by a server and checked by a client. You can configure your <a href="validation_help.html#auto_crl_update_prefs">Automatic CRL Update Preferences</a> so that a CRL will be updated automatically at regular intervals with the version currently on the server.
+
+<p>Another way to combat the threat of compromised certificates is to use a special server that supports the Online Certificate Status Protocol (OCSP). Such a server can answer client queries about individual certificates (see <a href="#Configuring_Certificate_Manager_for_OCSP">Configuring OCSP</a>, below). 
+
+<p>The server, called an OCSP responder, receives an updated CRL periodically from the CA that issues the certificates to be verified. You can configure Certificate Manager to submit a status request for a certificate to the OCSP responder, and the OCSP responder confirms whether the certificate is valid.  
 
 
 <p>&nbsp;</p>
 <a name="Managing_CRLs"><h2>Managing CRLs</h2></a>
 
 
-<p>A certificate revocation list (CRL) is list of revoked certificates.  A <a href="glossary.html#certificate_authority_(CA)">certificate authority (CA)</a>  might revoke a certificate, for example, if it has been compromised in some way&#151;much the way a credit card company might revoke your credit card if you report that it's been stolen. 
+<p>A certificate revocation list (CRL) is list of revoked certificates.  A <a href="glossary.html#certificate_authority (CA)">certificate authority (CA)</a>  might revoke a certificate, for example, if it has been compromised in some way&#151;much the way a credit card company might revoke your credit card if you report that it's been stolen.
+</p>
 
-<h3>Downloading and Updating CRLs</h3>
-<p> You can download the latest CRL from a CA to your browser. To download a CRL, you typically go to a URL (specified by the CA or by your system administrator) and click a link. 
+<p>This section describes how to import and manage CRLs. <p>For background information, see <a href="#How_Certificate_Validation_Works">How Validation Works</a>. 
+
+<p>For detailed descriptions of CRL settings that you can control, see <a href=#validation_settings">Validation Settings</a>.</p>
+
+<table cellpadding=4 cellspacing=2 bgcolor="#cccccc" Width=324>
+<tr>
+<td class="inthissection">
+<p>In this section:</p>
+<p><a href="#next_update">About the "Next Update" Date</a></p>
+<p><a href="#Importing_CRLs">Importing CRLs</a></p>
+<p><a href="#view_manage_CRLs">Viewing and Managing CRLs</a></p>
+</td>
+</tr>
+</table>
+ 
+
+<p>&nbsp;</p>
+<a name ="next_update"></a><h3>About the "Next Update" Date</h3>
 
 <p>The browser uses the CRLs it has available to check the validity of certificates issued by the corresponding CAs. If a certificate is listed as revoked, the browser won't accept it as evidence of identity.
 
-<p>A CA typically publishes an updated CRL at regular intervals.  Every CRL includes a date, specified in the Next Update field, by which the CA will publish the next update of that CRL. If the date in the Next Update field is earlier than the current date, you should obtain the most recent version of the CRL. 
+<p>A CA typically publishes an updated CRL at regular intervals. Every CRL includes a date, specified in the Next Update field, by which the CA will publish the next update of that CRL. In general, if the date in the Next Update field is earlier than the current date, you should obtain the most recent version of the CRL. To view CRL information and set up automatic CRL updating, see <a href="#view_manage_CRLs">Viewing and Managing CRLs</a>.
 
 <p>Although the absence of the most recent CRL does not by itself invalidate a certificate, the browser may not handle such certificates correctly. In some situations, you may want to delete CRLs with Next Update dates earlier than the present. Speak to your system administrator for guidance on CRL management. 
 
-<h3>Viewing and Deleting CRLs</h3>
 
-<p>You can view and delete CRLs available to the browser, including Next Update dates, through the browser's Validation preferences:
+
+<p>&nbsp;</p>
+<a name="Importing_CRLs"><h3>Importing CRLs</h3>
+
+<p> You can import the latest CRL from a CA into your browser. To import a CRL, follow these steps:
+<ol>
+	<li>Go to the URL specified by the CA or by your system administrator and click the link for the CRL that you want to import. 
+
+	<p>The Import Status dialog box appears.	
+
+	<li>Confirm that the CRL was imported successfully and that it's the one you wanted. In most cases you should also click Yes, which enables automatic updating of the CRL you just imported.
+	<li>The next step depends on whether you click Yes or No in the Import Status dialog box:
+<ul>
+	<p><b>Yes:</b> The Automatic CRL Update Preferences dialog box appears. In this case, go on to step 4.
+
+	<p><b>No:</b> The Import Status dialog box closes. If you change your mind and decide to enable automatic updates after all, see <a href="#view_manage_CRLs">Viewing and Managing CRLs</a>.</p>
+</ul>
+	<li>Select the option labeled &quot;Enable Automatic Update for this CRL&quot;.
+	<li>Decide how you want to schedule the automatic updates:</li>
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li>Click OK to confirm your choices.
+</ol>
+
+
+<p>&nbsp;</p>
+<a name="view_manage_CRLs"><h3>Viewing and Managing CRLs</h3>
+
+<p>You can view and manage CRLs available to the browser through the browser's Validation preferences:
 
 <ol>
 	<li>Open the Edit menu and choose Preferences.
 	<li>Under the Privacy &amp; Security category, choose Validation. (If no subcategories are visible, double-click the category to expand the list.)
+	<li>Click Manage CRLs in the Validation panel to see a list of the CRLs available to Certificate Manager.
 </ol>
 
-<p>Click Manage CRLs in the Validation panel to see a list of the CRLs available to Certificate Manager. 
-
-<p>To delete a CRL, select it, then click Delete.
+<p>To delete or update a CRL, select it and click the appropriate button.
 
+<p>To set up automatic updates for a CRL, select the CRL and click Settings. The Automatic CRL Update Preferences dialog box appears:
+<ol>
+	<li>Select the option labeled &quot;Enable Automatic Update for this CRL&quot;.
+	<li>Decide how you want to schedule the automatic updates:</li>
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li>Click OK to confirm your choices.
+</ol>
 
 
 <p>&nbsp;</p>
@@ -411,7 +471,7 @@
 	<li>Under the Privacy &amp; Security category, choose Validation. (If no subcategories are visible, double-click the category to expand the list.)
 </ol>
 
-<p>For information about the OCSP options available, see <a href="validation_help.html">Validation Settings</a>.
+<p>For information about the OCSP options available, see <a href="validation_help.html#OCSP">OCSP</a>.
 
 <p>
 [&nbsp;<A HREF="#using_certs_first">Return to beginning of Using Certificates section</A>&nbsp;]
@@ -419,7 +479,7 @@
 
 
 <hr>
-<p><i>January 11 2002</i></p>
+<p><i>25 January 2002</i></p>
 <p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>

extensions/help/resources/locale/en-US/using_certs_help.xhtml

@@ -26,7 +26,7 @@
 <p><a href="#using_certs_manage">Managing Certificates</a></p>
 <p><a href="#using_certs_devices">Managing Smart Cards and Other Security Devices</a></p>
 <p><a href="#using_certs_ssl">Managing SSL Warnings and Settings</a></p>
-<p><a href="#using_certs_validation">Managing Validation Settings</a></p>
+<p><a href="#using_certs_validation">Controlling Validation</a></p>
 <p><a href="#using_certs_settings">Certificate Settings</a></p>
 </td>
 </tr>
@@ -334,7 +334,7 @@
 <a NAME="certificates:validationIDX"></a>
 <a NAME="validation,_of_certificates:aboutIDX"></a>
 
-<hr><h1>Managing Validation Settings</h1>
+<hr><h1>Controlling Validation</h1>
 
 <p>As discussed above under <a href="#using_certs_get">Get Your Own Certificate</a>, a certificate is a form of identification, much like a driver's license, that you can use to identify yourself over the Internet and other networks. However, also like a driver's license, a certificate may be expired or invalid for some other reason. Therefore, your browser software needs to confirm the validity of any given certificate in some way before trusting it for identification purposes. 
 
@@ -347,6 +347,7 @@
 <p><a href="#How_Certificate_Validation_Works">How Validation Works</a></p>
 <p><a href="#Managing_CRLs">Managing CRLs</a></p>
 <p><a href="#Configuring_Certificate_Manager_for_OCSP">Configuring OCSP</a></p>
+<p><a href="validation_help.html">Validation Settings</a></p>
 </td>
 </tr>
 </table>
@@ -361,43 +362,102 @@
 
 <p>Whenever you use or view a certificate stored by Certificate Manager, it takes several steps to verify the certificate. At a minimum, it confirms that the CA's digital signature on the certificate was created by a CA whose own certificate is (1) present in the Certificate Manager's list of available CA certificates and (2) marked as trusted for issuing the kind of certificate being verified. 
 
-<p>If the CA certificate is not itself present, the <a href="glossary.html#certificate_chain">certificate chain</a> for the CA certificate must include a higher-level CA certificate that is present and correctly trusted. Certificate Manager also confirms that the certificate being verified has not been marked as untrusted in the certificate store. If any one of these checks fails, Certificate Manager marks the certificate as unverified and won't recognize the identity it certifies.
+<p>If the CA certificate is not itself present, the <a href="glossary.html#certificate_chain">certificate chain</a> for the CA certificate must include a higher-level CA certificate that is present and correctly trusted. Certificate Manager also confirms that the certificate being verified is currently marked as trusted in the certificate store. If any one of these checks fails, Certificate Manager marks the certificate as unverified and won't recognize the identity it certifies.
 
 <p>A certificate can pass all these tests and still be compromised in some way; for example, the certificate be revoked because an unauthorized person has gained access to the certificate's private key. A compromised certificate can allow an unauthorized person (or web site) to pretend to be the certificate owner.
 
-<p>One way to combat this threat is for Certificate Manager to check a certificate revocation list (CRL) as part of the verification process (see <a href="#Managing_CRLs">Managing CRLs</a>, below). Typically, you download a CRL to your browser by clicking a link. If a CRL is present, Certificate Manager checks each certificate issued by the same CA against the list. The reliability of CRLs is subject to the frequency with which they are both updated by a server and checked by a client, and their size can sometimes cause delays in the verification process that may not be acceptable to some people.
+<p>One way to combat this threat is for Certificate Manager to check a certificate revocation list (CRL) as part of the verification process (see <a href="#Managing_CRLs">Managing CRLs</a>, below). Typically, you download a CRL to your browser by clicking a link. If a CRL is present, Certificate Manager checks any certificate issued by the same CA against the list as part of the verification process. 
 
-<p>Another way to combat this threat is to use a special server that supports the Online Certificate Status Protocol (OCSP). Such a server can answer client queries about individual certificates (see <a href="#Configuring_Certificate_Manager_for_OCSP">Configuring Certificate Manager for OCSP</a>, below). The server, called an OCSP responder, receives an updated CRL periodically from the CA that issues the certificates to be verified. You can configure Certificate Manager to submit a status request for a certificate to the OCSP responder, and the OCSP responder confirms whether the certificate is valid.  
+<p>The reliability of CRLs is subject to the frequency with which they are both updated by a server and checked by a client. You can configure your <a href="validation_help.html#auto_crl_update_prefs">Automatic CRL Update Preferences</a> so that a CRL will be updated automatically at regular intervals with the version currently on the server.
+
+<p>Another way to combat the threat of compromised certificates is to use a special server that supports the Online Certificate Status Protocol (OCSP). Such a server can answer client queries about individual certificates (see <a href="#Configuring_Certificate_Manager_for_OCSP">Configuring OCSP</a>, below). 
+
+<p>The server, called an OCSP responder, receives an updated CRL periodically from the CA that issues the certificates to be verified. You can configure Certificate Manager to submit a status request for a certificate to the OCSP responder, and the OCSP responder confirms whether the certificate is valid.  
 
 
 <p>&nbsp;</p>
 <a name="Managing_CRLs"><h2>Managing CRLs</h2></a>
 
 
-<p>A certificate revocation list (CRL) is list of revoked certificates.  A <a href="glossary.html#certificate_authority_(CA)">certificate authority (CA)</a>  might revoke a certificate, for example, if it has been compromised in some way&#151;much the way a credit card company might revoke your credit card if you report that it's been stolen. 
+<p>A certificate revocation list (CRL) is list of revoked certificates.  A <a href="glossary.html#certificate_authority (CA)">certificate authority (CA)</a>  might revoke a certificate, for example, if it has been compromised in some way&#151;much the way a credit card company might revoke your credit card if you report that it's been stolen.
+</p>
 
-<h3>Downloading and Updating CRLs</h3>
-<p> You can download the latest CRL from a CA to your browser. To download a CRL, you typically go to a URL (specified by the CA or by your system administrator) and click a link. 
+<p>This section describes how to import and manage CRLs. <p>For background information, see <a href="#How_Certificate_Validation_Works">How Validation Works</a>. 
+
+<p>For detailed descriptions of CRL settings that you can control, see <a href=#validation_settings">Validation Settings</a>.</p>
+
+<table cellpadding=4 cellspacing=2 bgcolor="#cccccc" Width=324>
+<tr>
+<td class="inthissection">
+<p>In this section:</p>
+<p><a href="#next_update">About the "Next Update" Date</a></p>
+<p><a href="#Importing_CRLs">Importing CRLs</a></p>
+<p><a href="#view_manage_CRLs">Viewing and Managing CRLs</a></p>
+</td>
+</tr>
+</table>
+ 
+
+<p>&nbsp;</p>
+<a name ="next_update"></a><h3>About the "Next Update" Date</h3>
 
 <p>The browser uses the CRLs it has available to check the validity of certificates issued by the corresponding CAs. If a certificate is listed as revoked, the browser won't accept it as evidence of identity.
 
-<p>A CA typically publishes an updated CRL at regular intervals.  Every CRL includes a date, specified in the Next Update field, by which the CA will publish the next update of that CRL. If the date in the Next Update field is earlier than the current date, you should obtain the most recent version of the CRL. 
+<p>A CA typically publishes an updated CRL at regular intervals. Every CRL includes a date, specified in the Next Update field, by which the CA will publish the next update of that CRL. In general, if the date in the Next Update field is earlier than the current date, you should obtain the most recent version of the CRL. To view CRL information and set up automatic CRL updating, see <a href="#view_manage_CRLs">Viewing and Managing CRLs</a>.
 
 <p>Although the absence of the most recent CRL does not by itself invalidate a certificate, the browser may not handle such certificates correctly. In some situations, you may want to delete CRLs with Next Update dates earlier than the present. Speak to your system administrator for guidance on CRL management. 
 
-<h3>Viewing and Deleting CRLs</h3>
 
-<p>You can view and delete CRLs available to the browser, including Next Update dates, through the browser's Validation preferences:
+
+<p>&nbsp;</p>
+<a name="Importing_CRLs"><h3>Importing CRLs</h3>
+
+<p> You can import the latest CRL from a CA into your browser. To import a CRL, follow these steps:
+<ol>
+	<li>Go to the URL specified by the CA or by your system administrator and click the link for the CRL that you want to import. 
+
+	<p>The Import Status dialog box appears.	
+
+	<li>Confirm that the CRL was imported successfully and that it's the one you wanted. In most cases you should also click Yes, which enables automatic updating of the CRL you just imported.
+	<li>The next step depends on whether you click Yes or No in the Import Status dialog box:
+<ul>
+	<p><b>Yes:</b> The Automatic CRL Update Preferences dialog box appears. In this case, go on to step 4.
+
+	<p><b>No:</b> The Import Status dialog box closes. If you change your mind and decide to enable automatic updates after all, see <a href="#view_manage_CRLs">Viewing and Managing CRLs</a>.</p>
+</ul>
+	<li>Select the option labeled &quot;Enable Automatic Update for this CRL&quot;.
+	<li>Decide how you want to schedule the automatic updates:</li>
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li>Click OK to confirm your choices.
+</ol>
+
+
+<p>&nbsp;</p>
+<a name="view_manage_CRLs"><h3>Viewing and Managing CRLs</h3>
+
+<p>You can view and manage CRLs available to the browser through the browser's Validation preferences:
 
 <ol>
 	<li>Open the Edit menu and choose Preferences.
 	<li>Under the Privacy &amp; Security category, choose Validation. (If no subcategories are visible, double-click the category to expand the list.)
+	<li>Click Manage CRLs in the Validation panel to see a list of the CRLs available to Certificate Manager.
 </ol>
 
-<p>Click Manage CRLs in the Validation panel to see a list of the CRLs available to Certificate Manager. 
-
-<p>To delete a CRL, select it, then click Delete.
+<p>To delete or update a CRL, select it and click the appropriate button.
 
+<p>To set up automatic updates for a CRL, select the CRL and click Settings. The Automatic CRL Update Preferences dialog box appears:
+<ol>
+	<li>Select the option labeled &quot;Enable Automatic Update for this CRL&quot;.
+	<li>Decide how you want to schedule the automatic updates:</li>
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li>Click OK to confirm your choices.
+</ol>
 
 
 <p>&nbsp;</p>
@@ -411,7 +471,7 @@
 	<li>Under the Privacy &amp; Security category, choose Validation. (If no subcategories are visible, double-click the category to expand the list.)
 </ol>
 
-<p>For information about the OCSP options available, see <a href="validation_help.html">Validation Settings</a>.
+<p>For information about the OCSP options available, see <a href="validation_help.html#OCSP">OCSP</a>.
 
 <p>
 [&nbsp;<A HREF="#using_certs_first">Return to beginning of Using Certificates section</A>&nbsp;]
@@ -419,7 +479,7 @@
 
 
 <hr>
-<p><i>January 11 2002</i></p>
+<p><i>25 January 2002</i></p>
 <p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>

extensions/help/resources/locale/en-US/using_priv_help.html

@@ -439,7 +439,7 @@
 
 <ol>
 <li>Open the Edit menu and choose Preferences.
-<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 <li>In the Password Manager section, deselect &quot;Remember passwords for sites that require me to log in&quot; to turn Password Manager off.
 </ol>
 
@@ -485,6 +485,7 @@
 <p><a href="#form_auto">Filling Out Forms Automatically</a></p>
 <p><a href="#form_notify">Form Manager's Automatic Notification Feature</a></p>
 <p><a href="#form_forms">What Happens If I Provide Personal Information to a Web Site?</a></p>
+<p><a href="#forms_prefs">Privacy & Security Preferences - Forms</a></p>
 </td>
 </tr>
 </table>
@@ -599,7 +600,7 @@
 
 <ol>
 <li>Open the Edit menu and choose Preferences.
-<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 <li>In the Encrypting versus Obscuring section, select &quot;Use encryption when storing sensitive data.&quot; 
 <li>Click OK. If you haven't previously set a master password, a new dialog box appears and leads you through the process of setting it. 
 </ol>
@@ -686,10 +687,23 @@
 
 <p>For more information about the Cookie Manager, see <a href="#using_cookies">Using the Cookie Manager</a>.
 
+
+<p>&nbsp;</p>
+<a NAME="managing_images"></a>
+<a NAME="images:managingIDX"></a>
+<h1><hr>Managing Images</h1>
+
+<p>If you wish, you can choose not to download any images when you browse the web. This greatly restricts what you can view online, but may be helpful if you have a slow connection and wish to shorten the time it takes web pages to load.
+
+<p>You can also control how frequently animated images repeat their animation, or turn off animation completely.
+
+<p>The next section describes how to control these image settings.
+
+
 <p>&nbsp;</p>
 <a NAME="using_images"></a>
-<a NAME="imagesIDX"></a>
-<h2>Privacy &amp; Security Preferences - Images</h2>
+<a NAME="images:preferencesIDX"></a>
+<h2><hr>Privacy &amp; Security Preferences - Images</h2>
 
 <p>This section describes how to set preferences for images. To view the preference settings for images:
 
@@ -782,7 +796,7 @@
 
 <hr>
 
-<p><i>11 January 2002</i></p>
+<p><i>25 January 2002</i></p>
 
 <hr>
 <p>Copyright &copy; 1994-2002 Netscape Communications Corporation.</p>

extensions/help/resources/locale/en-US/using_priv_help.xhtml

@@ -439,7 +439,7 @@
 
 <ol>
 <li>Open the Edit menu and choose Preferences.
-<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 <li>In the Password Manager section, deselect &quot;Remember passwords for sites that require me to log in&quot; to turn Password Manager off.
 </ol>
 
@@ -485,6 +485,7 @@
 <p><a href="#form_auto">Filling Out Forms Automatically</a></p>
 <p><a href="#form_notify">Form Manager's Automatic Notification Feature</a></p>
 <p><a href="#form_forms">What Happens If I Provide Personal Information to a Web Site?</a></p>
+<p><a href="#forms_prefs">Privacy & Security Preferences - Forms</a></p>
 </td>
 </tr>
 </table>
@@ -599,7 +600,7 @@
 
 <ol>
 <li>Open the Edit menu and choose Preferences.
-<li>Under the Privacy &amp; Security category, choose Web Passwords. (If no subcategories are visible, double-click the category to expand the list.)
+<li>Under the Privacy &amp; Security category, choose Passwords. (If no subcategories are visible, double-click the category to expand the list.)
 <li>In the Encrypting versus Obscuring section, select &quot;Use encryption when storing sensitive data.&quot; 
 <li>Click OK. If you haven't previously set a master password, a new dialog box appears and leads you through the process of setting it. 
 </ol>
@@ -686,10 +687,23 @@
 
 <p>For more information about the Cookie Manager, see <a href="#using_cookies">Using the Cookie Manager</a>.
 
+
+<p>&nbsp;</p>
+<a NAME="managing_images"></a>
+<a NAME="images:managingIDX"></a>
+<h1><hr>Managing Images</h1>
+
+<p>If you wish, you can choose not to download any images when you browse the web. This greatly restricts what you can view online, but may be helpful if you have a slow connection and wish to shorten the time it takes web pages to load.
+
+<p>You can also control how frequently animated images repeat their animation, or turn off animation completely.
+
+<p>The next section describes how to control these image settings.
+
+
 <p>&nbsp;</p>
 <a NAME="using_images"></a>
-<a NAME="imagesIDX"></a>
-<h2>Privacy &amp; Security Preferences - Images</h2>
+<a NAME="images:preferencesIDX"></a>
+<h2><hr>Privacy &amp; Security Preferences - Images</h2>
 
 <p>This section describes how to set preferences for images. To view the preference settings for images:
 
@@ -782,7 +796,7 @@
 
 <hr>
 
-<p><i>11 January 2002</i></p>
+<p><i>25 January 2002</i></p>
 
 <hr>
 <p>Copyright &copy; 1994-2002 Netscape Communications Corporation.</p>

extensions/help/resources/locale/en-US/validation_help.html

@@ -8,13 +8,42 @@
 
 <body bgcolor="white">
 
+<a NAME="validation_settings"></a>
+<a NAME="validation:settingsIDX"></a>
+<a NAME="settings:validationIDX"></a>
+
+<hr><h1>Validation Settings</h1>
+
+<p>This section describes how to set validation preferences and how to control Certificate Revocation List (CRL) settings.
+
+<p>For step-by-step descriptions of various tasks related to validation and CRLs, see <a href="using_certs_help.html#using_certs_validation">How Certificate Validation Works</a>.
+<p>&nbsp;</p>
+
+<table cellpadding=4 cellspacing=2 bgcolor="#cccccc" Width=324>
+<tr>
+<td class="inthissection">
+<p>In this section:</p>
+<p><a href="#validation_first">Privacy &amp; Security Preferences - Validation</a></p>
+<p><a href="#manage_CRLs_dialog">Manage CRLs</a></p>
+<p><a href="#crl_import_status">CRL Import Status</a></p>
+<p><a href="#auto_crl_update_prefs">Automatic CRL Update Preferences</a></p>
+</td>
+</tr>
+</table>
+<p>&nbsp;</p>
+
+
+
+
+
+
 <a NAME="validation_first"></a>
 <a NAME="validation_of_certificates:OCSPIDX"></a>
 <a NAME="validation_of_certificates:CRLsIDX"></a>
 <a NAME="OCSP:preferencesIDX"></a>
 <a NAME="CRLs:preferencesIDX"></a>
 
-<h2>Privacy &amp; Security Preferences - Validation</h2>
+<h2><hr>Privacy &amp; Security Preferences - Validation</h2>
 
 <p>This section describes how to use the Validation Settings panel. If you are not already viewing the panel, follow these steps:
 
@@ -33,9 +62,7 @@
 
 <p>Click Manage CRLs to see a list of the CRLs available to Certificate Manager. 
 
-<p>To delete a CRL, select it and then click Delete.
-
-<p>For more information about CRLs, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
+<p>For more information about managing CRLs, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
 
 
 <p>&nbsp;
@@ -55,14 +82,102 @@
 </ul>
 
 
+<a NAME="manage_CRLs_dialog"></a>
+<a NAME="validation:managing_CRLsIDX"></a>
+<a NAME="CRLs:managingIDX"></a>
+<hr><h2>Manage CRLs</h2>
+
+<p>This section describes how to use the Manage CRLs dialog box. To view it, follow these steps:
+<ol>
+   <li>Open the Edit menu and choose Preferences.
+   <li>Under the Privacy &amp; Security category, click Validation. (If no subcategories are visible, double-click the category to expand the list.) 
+   <li>Click Manage CRLs.
+</ol>
+
+<p>This dialog box displays a list of the <a href="glossary.html#certificate_revocation_list_(CRL)">CRLs</a> that you have downloaded for use by your browser. Typically, you download a CRL by clicking a URL. FOr information about how CRLs work, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
+
+<p>To select a CRL, click it. You can then perform any of these actions:
+
+<ul>
+	<li><b>Delete:</b> Deletes the CRL permanently from your hard disk. Don't do this unless you're sure you no longer need the CRL for validating certificates. If in doubt, consult your system administrator.
+	<li><b>Settings:</b> Opens the <a href="#auto_crl_update_prefs">Automatic CRL Update Preferences</a> dialog box, which allows you to activate automatic CRL updates  for the selected CRL and specify how frequently they should be performed.  
+	<li><b>Update:</b> Immediately updates the selected CRL (if possible).
+</ul>
+<p>The Manage CRLs dialog box provides the following information about each CRL:
+
+<ul>
+	<li><b>Organization (O):</b> The name of the organization that issued the CRL.
+	<li><b>Organizational Unit (OU):</b> The name of the organizational unit that issued the CRL (such as the root CA for a particular kind of certificate).
+	<li><b>Last Update:</b> The date on which the browser's copy of this CRL was last updated.
+	<li><b>Next Update:</b> The next date on which an updated version of this CRL will be published by the CRL issuer.
+	<li><b>Auto Update:</b> Indicates whether Auto Update has been enabled for this CRL. To view the settings that control auto updating, select the CRL and click Settings.
+	<li><b>Auto Update Status:</b>
+		<ul>
+			<li>If Auto Update has not been enabled, or if it has been enabled but the next scheduled update has not yet occurrred, this field will be blank. 
+			<li>After at least one auto update has occurred, this field shows "failed" if the most recent auto update failed, or "OK" if the most recent auto update was successful.
+</ul></ul>
+
+<a NAME="crl_import_status"></a>
+<a NAME="validation:managing_CRLsIDX"></a>
+<a NAME="CRLs:import_status_of"></a>
+<hr><h2>CRL Import Status</h2>
+
+<p>This section describes how to use the CRL Import Status dialog box, which appears when you first attempt to import a CRL or when you successfully update it manually.
+
+<p>This dialog box informs you 
+<ul>
+	<li>whether your attempt to import or update the CRL was successful
+	<li>what organization issued the CRL
+	<li>when the next update of this CRL will be published
+	<li>whether Automatic Update is enabled for this CRL
+</ul>
+
+<p>If Automatic Update is not enabled, you can turn it on from here:
+														
+<ul>
+	<li><b>Yes:</b> Click Yes to enable automatic updating of this CRL. If you click this button, the Automatic CRL Update Preferences dialog box appears next. The next section describes how to set these preferences.
+	<li><b>No:</b> Click No if you wish to leave Automatic Update disabled. 
+</ul>
+
+<a NAME="auto_crl_update_prefs"></a>
+<a NAME="validation:auto_updating_CRLsIDX"></a>
+<a NAME="CRLs:auto_upates_forIDX"></a>
+<hr><h2>Automatic CRL Update Preferences</h2>
+
+<p>This section describes how to use the Automatic CRL Update Preferences dialog box. If you are not already viewing it, follow these steps:
+<ol>
+   <li>Open the Edit menu and choose Preferences.
+   <li>Under the Privacy &amp; Security category, click Validation. (If no subcategories are visible, double-click the category to expand the list.) 
+   <li>Click Manage CRLs, then select the CRL whose auto update preferences you want to view or change.
+   <li>Click Settings.
+</ol>
+
+<p>This dialog box displays the following options and information:
+
+<ul>
+	<li><b>Enable Automatic Update for this CRL:</b> Select this option if you want the CRL you selected to be updated automatically according to the schedule you set here.
+	<p>If you enable Automatic Update, you must select one of these radio buttons: 
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li><b>CRL would be imported from:</b> Indicates the URL from which the browser originally imported the CRL. This setting cannot be changed. To specify a different location, delete the CRL and re-import it from the new location.
+	<li><b>Previous Consecutive Update Failures:</b> Indicates how many times update attempts for this CRL have failed consecutively, including the most recent failure:
+	<ul>
+		<li> If the most recent attempt was successful, this reads "None" even if there were previous unsuccessful attempts. 
+		<li>If the most recent attempt failed, this indicates the number of consecutive failures and the error message for the most recent failure.
+</ul></ul>
+
+<p>Click OK to confirm your choices.
+
+
 
-<p>
-[&nbsp;<A HREF="#validation_first">Return to beginning of Validation section</A>&nbsp;]
-</p>
 
 <hr>
-<p><i>8/31/2001</i></p>
-<p>Copyright &copy; 1998-2001 The Mozilla Organization.</p>
+
+
+<p><i>25 January 2002</i></p>
+<p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>
 </html>

extensions/help/resources/locale/en-US/validation_help.xhtml

@@ -8,13 +8,42 @@
 
 <body bgcolor="white">
 
+<a NAME="validation_settings"></a>
+<a NAME="validation:settingsIDX"></a>
+<a NAME="settings:validationIDX"></a>
+
+<hr><h1>Validation Settings</h1>
+
+<p>This section describes how to set validation preferences and how to control Certificate Revocation List (CRL) settings.
+
+<p>For step-by-step descriptions of various tasks related to validation and CRLs, see <a href="using_certs_help.html#using_certs_validation">How Certificate Validation Works</a>.
+<p>&nbsp;</p>
+
+<table cellpadding=4 cellspacing=2 bgcolor="#cccccc" Width=324>
+<tr>
+<td class="inthissection">
+<p>In this section:</p>
+<p><a href="#validation_first">Privacy &amp; Security Preferences - Validation</a></p>
+<p><a href="#manage_CRLs_dialog">Manage CRLs</a></p>
+<p><a href="#crl_import_status">CRL Import Status</a></p>
+<p><a href="#auto_crl_update_prefs">Automatic CRL Update Preferences</a></p>
+</td>
+</tr>
+</table>
+<p>&nbsp;</p>
+
+
+
+
+
+
 <a NAME="validation_first"></a>
 <a NAME="validation_of_certificates:OCSPIDX"></a>
 <a NAME="validation_of_certificates:CRLsIDX"></a>
 <a NAME="OCSP:preferencesIDX"></a>
 <a NAME="CRLs:preferencesIDX"></a>
 
-<h2>Privacy &amp; Security Preferences - Validation</h2>
+<h2><hr>Privacy &amp; Security Preferences - Validation</h2>
 
 <p>This section describes how to use the Validation Settings panel. If you are not already viewing the panel, follow these steps:
 
@@ -33,9 +62,7 @@
 
 <p>Click Manage CRLs to see a list of the CRLs available to Certificate Manager. 
 
-<p>To delete a CRL, select it and then click Delete.
-
-<p>For more information about CRLs, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
+<p>For more information about managing CRLs, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
 
 
 <p>&nbsp;
@@ -55,14 +82,102 @@
 </ul>
 
 
+<a NAME="manage_CRLs_dialog"></a>
+<a NAME="validation:managing_CRLsIDX"></a>
+<a NAME="CRLs:managingIDX"></a>
+<hr><h2>Manage CRLs</h2>
+
+<p>This section describes how to use the Manage CRLs dialog box. To view it, follow these steps:
+<ol>
+   <li>Open the Edit menu and choose Preferences.
+   <li>Under the Privacy &amp; Security category, click Validation. (If no subcategories are visible, double-click the category to expand the list.) 
+   <li>Click Manage CRLs.
+</ol>
+
+<p>This dialog box displays a list of the <a href="glossary.html#certificate_revocation_list_(CRL)">CRLs</a> that you have downloaded for use by your browser. Typically, you download a CRL by clicking a URL. FOr information about how CRLs work, see <a href="using_certs_help.html#Managing_CRLs">Managing CRLs</a>.
+
+<p>To select a CRL, click it. You can then perform any of these actions:
+
+<ul>
+	<li><b>Delete:</b> Deletes the CRL permanently from your hard disk. Don't do this unless you're sure you no longer need the CRL for validating certificates. If in doubt, consult your system administrator.
+	<li><b>Settings:</b> Opens the <a href="#auto_crl_update_prefs">Automatic CRL Update Preferences</a> dialog box, which allows you to activate automatic CRL updates  for the selected CRL and specify how frequently they should be performed.  
+	<li><b>Update:</b> Immediately updates the selected CRL (if possible).
+</ul>
+<p>The Manage CRLs dialog box provides the following information about each CRL:
+
+<ul>
+	<li><b>Organization (O):</b> The name of the organization that issued the CRL.
+	<li><b>Organizational Unit (OU):</b> The name of the organizational unit that issued the CRL (such as the root CA for a particular kind of certificate).
+	<li><b>Last Update:</b> The date on which the browser's copy of this CRL was last updated.
+	<li><b>Next Update:</b> The next date on which an updated version of this CRL will be published by the CRL issuer.
+	<li><b>Auto Update:</b> Indicates whether Auto Update has been enabled for this CRL. To view the settings that control auto updating, select the CRL and click Settings.
+	<li><b>Auto Update Status:</b>
+		<ul>
+			<li>If Auto Update has not been enabled, or if it has been enabled but the next scheduled update has not yet occurrred, this field will be blank. 
+			<li>After at least one auto update has occurred, this field shows "failed" if the most recent auto update failed, or "OK" if the most recent auto update was successful.
+</ul></ul>
+
+<a NAME="crl_import_status"></a>
+<a NAME="validation:managing_CRLsIDX"></a>
+<a NAME="CRLs:import_status_of"></a>
+<hr><h2>CRL Import Status</h2>
+
+<p>This section describes how to use the CRL Import Status dialog box, which appears when you first attempt to import a CRL or when you successfully update it manually.
+
+<p>This dialog box informs you 
+<ul>
+	<li>whether your attempt to import or update the CRL was successful
+	<li>what organization issued the CRL
+	<li>when the next update of this CRL will be published
+	<li>whether Automatic Update is enabled for this CRL
+</ul>
+
+<p>If Automatic Update is not enabled, you can turn it on from here:
+														
+<ul>
+	<li><b>Yes:</b> Click Yes to enable automatic updating of this CRL. If you click this button, the Automatic CRL Update Preferences dialog box appears next. The next section describes how to set these preferences.
+	<li><b>No:</b> Click No if you wish to leave Automatic Update disabled. 
+</ul>
+
+<a NAME="auto_crl_update_prefs"></a>
+<a NAME="validation:auto_updating_CRLsIDX"></a>
+<a NAME="CRLs:auto_upates_forIDX"></a>
+<hr><h2>Automatic CRL Update Preferences</h2>
+
+<p>This section describes how to use the Automatic CRL Update Preferences dialog box. If you are not already viewing it, follow these steps:
+<ol>
+   <li>Open the Edit menu and choose Preferences.
+   <li>Under the Privacy &amp; Security category, click Validation. (If no subcategories are visible, double-click the category to expand the list.) 
+   <li>Click Manage CRLs, then select the CRL whose auto update preferences you want to view or change.
+   <li>Click Settings.
+</ol>
+
+<p>This dialog box displays the following options and information:
+
+<ul>
+	<li><b>Enable Automatic Update for this CRL:</b> Select this option if you want the CRL you selected to be updated automatically according to the schedule you set here.
+	<p>If you enable Automatic Update, you must select one of these radio buttons: 
+	<ul>
+		<li><b>Update X days before Next Update date.</b> Select this option if you want to base the update frequency on the frequency with which the CRL publisher publishes a new version of the CRL.
+		<li><b>Update every X days.</b> Select this option if you want to specify an update interval unrelated to the CRL's Next Update date.
+	</ul>
+	<li><b>CRL would be imported from:</b> Indicates the URL from which the browser originally imported the CRL. This setting cannot be changed. To specify a different location, delete the CRL and re-import it from the new location.
+	<li><b>Previous Consecutive Update Failures:</b> Indicates how many times update attempts for this CRL have failed consecutively, including the most recent failure:
+	<ul>
+		<li> If the most recent attempt was successful, this reads "None" even if there were previous unsuccessful attempts. 
+		<li>If the most recent attempt failed, this indicates the number of consecutive failures and the error message for the most recent failure.
+</ul></ul>
+
+<p>Click OK to confirm your choices.
+
+
 
-<p>
-[&nbsp;<A HREF="#validation_first">Return to beginning of Validation section</A>&nbsp;]
-</p>
 
 <hr>
-<p><i>8/31/2001</i></p>
-<p>Copyright &copy; 1998-2001 The Mozilla Organization.</p>
+
+
+<p><i>25 January 2002</i></p>
+<p>Copyright &copy; 1998-2002 The Mozilla Organization.</p>
 
 </body>
 </html>