Hello, A normat certificate user never go to this menu, but maybe developers does... (ad remove crls- to test your application works well with revoked state or not, etc...
my opinion, remove it, but ask the right people too, please. :) Üdvözlettel/Regards, Varga Viktor Üzemeltetési és Vevőszolgálati Vezető IT Service and Customer Service Executive Netlock Kft. -----Original Message----- From: dev-tech-crypto-bounces+varga.viktor=netlock...@lists.mozilla.org [mailto:dev-tech-crypto-bounces+varga.viktor=netlock...@lists.mozilla.org] On Behalf Of Brian Smith Sent: Thursday, May 02, 2013 5:40 AM To: mozilla's crypto code discussion list Subject: Re: Removal of "Revocation Lists" feature (Options -> Advanced -> Revocation Lists) Robert Relyea wrote: > Brian, I was under the impression you wanted to remove the CRL > autofetching feature (where you enter a URL and a fetching time and > the CRL will automatically be fetched). When I looked at the UI, it > looked like it had both the URL fetching feature as well as the > ability to manage downloaded CRLs. I think you need to be careful > about removing the management ability with CRLs. The most important > part of the UI is the ability to delete CRLs which may have gotten > into the database. My intent is to remove/disable all aspects of this feature: the UI *and* the processing of CRLs stored in the database. > Any the processing of already loaded CRLs is part of NSS proper. You > can load them and delete them by hand with crlutil. What you can't do > is have them automatically refreshed. > > Sean, is it the ability to load offline CRLs or the automatically > fetch/refresh them that you object to. I already know that processing > offline, already loaded CRLs are a requirement, so it's not going away > from NSS anytime soon. To be clear, I don't know of any reason to consider the processing of already-loaded CRLs as a requirement for Firefox. Anyway, I wouldn't get to hung up about what NSS currently does. We can always change Firefox and/or NSS to get the behavior we need. Cheers, Brian -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto _______________________________________________________________________ Ezt az e-mailt virus- es SPAM-szuresnek vetettuk ala a filter:mail MessageLabs rendszerrel. Tovabbi informacio: http://www.filtermax.hu This email has been scanned for viruses and SPAM by the filter:mail MessageLabs System. More information: http://www.filtermax.hu ________________________________________________________________________ _______________________________________________________________________ Ezt az e-mailt virus- es SPAM-szuresnek vetettuk ala a filter:mail MessageLabs rendszerrel. Tovabbi informacio: http://www.filtermax.hu This email has been scanned for viruses and SPAM by the filter:mail MessageLabs System. More information: http://www.filtermax.hu ________________________________________________________________________________________ -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
