On 01/08/2009 11:44 PM, Ian G:
Well, what Firefox does is cert-exception-click-thru-ordeal; whereas people are asking for key-continuity-management, with perhaps the emphasis on the last word.
Well, is it than an endorsement for self-signed certs? Otherwise I can't see the difference between what's requested and what already exists. The only thing which would change perhaps is the case when ANY certificate changes its state (replaced). Is this what is advocated?
It feel rather annoyed if I'd have to confirm every new cert encountered. Specially those which issue for relative short life-time would be again in disadvantage (despite doing the right thing).
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: [email protected] Blog: https://blog.startcom.org _______________________________________________ dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
