On 02/19/2009 07:36 PM, Ian G:
1. He has clearly laid out the trap of negative versus positive feedback, and explained why Firefox 3 UI changes make the result less secure than Ff2.
I don't think this is what he is saying exactly, but rather that for HTTP the world looks always fine...
...the positive indications for Secure are weak, the ones for Plain don't exists. Some of my thoughts about this from last year: http://blog.startcom.org/?p=86
3. And then there is the punycode thing. That's just spice, as far as I can see.
Also the wild card issue we've been discussing here already. Some of it is presented here: http://blog.startcom.org/?p=83
(PS. I'm moving the discussion to mozilla.dev.security.policy, please follow up there as this is the right news group for it)
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: start...@startcom.org Blog: https://blog.startcom.org -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
