On 12/02/2008 07:53 PM, Ian G:
(Client side certs are a lot more ready for mass-deployment than S/MIME ones, but still have their foibles. One thing I discovered was that if you have multiple certs, the KCM is not so well developed in Firefox. It works if set to "choose-by-self," in which case we don't know which cert is in use. Or, if set to "ask-me", it asks me practically every click which to choose, and sometimes twice or thrice per click. If I had more time I'd chase the bugzilla.)
The former is the default setting of Firefox by now (due to privacy issue with the automatic selection).
The later is an issue which currently is in some limbo by finger-pointing between Apache and the NSS folks.
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: [EMAIL PROTECTED] Blog: https://blog.startcom.org _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto