Justin Dolske wrote: > ...I think there's some risk that if a Firefox update suddenly breaks a > large swath of legitimate SSL sites, that could end up training users to > ignore the problem.
Given the large amount of self-generated server certs this problem already exists. Ultimately you cannot hold a user back from shooting himself in the foot. > I'm not even sure how you'd present this condition > to Joe The User in a comprehensible way. I'm pretty sure that if this case is taken to popular news ticker sites or other publications many users will be aware of this. Ciao, Michael. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
