D3|\||\|!$ wrote: > I never said so... Infact, I had wanted to implement something similar > to the browser's security mechanism and had asked for links providing > details about the certificate management architecture....
I'm a little confused. You keep saying you want the browser's security but I'm assuming you don't realize the Mozilla browsers all use NSS for their crypto and key/cert storage and leave (in your words) "the cert8.db, secmod.db, and key3.db accessible to all & sundry." The only protection those files have on most systems, besides the password to access the key db, is they are in the browser's profile folder which is typically under a user's homedir and only accessible to the user and any administrative/root users. Dave _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
