[Cc's restricted to the mozilla lists] Hi Eddy,
On Fri, Sep 07, 2007 at 07:57:49PM +0300, Eddy Nigg (StartCom Ltd.) wrote: > >Granted, if this is a "real" CA. But if you use it like in my PoC not > >for the typical CA scenario, but for user tracking, you could put all > >kinds of data in the certificate. > > > That's right. Still I believe that the generation of a private key and > issuance of the certificate is pretty "noisy". However I agree, some Not on 1.5, the generation of the private key is a popup that is closed faster than you can realize what it said if your machine is fast enough and installation is completely "noiseless". > >I've actually tested that again and it also works in Firefox 1.5 - and > >even "better" there, because the certificate installation does not show > >any dialog at all. > Right! In 1.5 no "Installation Message" appears, which in 2.0 has been > corrected. I suggest to file a bug with the request to change the > default settings for handling certificate authentication. Please send > the bug number, so we can vote for it... Just did that, it's 395399. Best regards, Alex -- Dipl.-Math. Alexander Klink | IT-Security Engineer | [EMAIL PROTECTED] mobile: +49 (0)178 2121703 | Cynops GmbH | http://www.cynops.de ----------------------------+----------------------+--------------------- HRB 7833, Amtsgericht | USt-Id: DE 213094986 | Geschäftsführer: Bad Homburg v. d. Höhe | | Martin Bartosch _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
