On Dec 23, 10:33 pm, Paul Hoffman <phoff...@proper.com> wrote: > At 1:16 AM +0200 12/24/08, Eddy Nigg wrote: > > >Select Preferences -> Advanced -> View Certificates -> Authorities. Search > >for AddTrust AB -> AddTrust External CA Root and click "Edit". Remove all > >Flags. > > Put more rudely, why do you expect Daddy to fix it for you when you can fix > it yourself, more easily and more quickly, if you want to?
Mozilla is in the business of protecting all users, not just those with sysadmin levels of skill. I'm not advocating drastic action with the Comodo roots, but a workarounds of this sort are probably not distinguishable from total failure when the entire user base is taken into account. The truth is that we are basically unable to act without a lot of collateral damage. We should keep this in mind with future security technology. Relying on companies willing to take money for doing absolutely nothing (not even the bare minimum they agreed to) is not a pleasant thing to do to our users. We didn't learn this lesson with EV--maybe next time! :) - Rob _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
