Arrakis wrote:
> I am trying to generate pre-configured credentials for Thunderbird, that
> have been Master Password encoded.
If you want to add stored password entries, you should be using the
interfaces provided by Wallet (or Password Mananger / Login Mananger,
for other products). Take a lo
Hi Kai,
Kai Engert wrote:
Nelson B schrieb:
I have heard that SSL server certs are available for FREE from Startcom
(one of the CAs already known to mozilla products) at this web page:
http://cert.startcom.org/
Wouldn't he require an object-signing aka code-signing cert?
Are those ava
Nelson B schrieb:
> Dave Townsend wrote:
>
>> Nelson Bolyard wrote:
>>
>>> $18/year is too expensive, eh?
>>>
>> Heh, this is true. My attempts to find cheap SSL certificates had only
>> yielded $100/per year jobs. Given that they are not that expensive I
>> have started doing a st
Gervase Markham wrote:
> Dave Townsend wrote:
>> Indeed, the issue is with add-on authors who do not want to host on
>> AMO (for a variety of quite valid reasons).
>
> Could you expand on what those reasons are?
Some examples that I have heard (or experienced myself):
Long review times leading
Gervase Markham wrote:
> Benjamin Smedberg wrote:
>> We already support hashes specified by the upate.rdf for the XPI, and AMO
>> uses this to serve the XPIs over http. However, the issue at hand is when
>> the extension has nothing to do with AMO, and serves the update.rdf over
>> HTTP or the XPI
Dave Townsend wrote:
> Indeed, the issue is with add-on authors who do not want to host on AMO
> (for a variety of quite valid reasons).
Could you expand on what those reasons are?
> A compromise allowing authors to
> host their xpis on their own sites but the update.rdf on AMO or some
> othe
Benjamin Smedberg wrote:
> We already support hashes specified by the upate.rdf for the XPI, and AMO
> uses this to serve the XPIs over http. However, the issue at hand is when
> the extension has nothing to do with AMO, and serves the update.rdf over
> HTTP or the XPI over HTTP without specifying
Nils Maier wrote:
> But that was never my point anyway (I talked about collisions)... And
> does not make md5 less broken than I claimed and researchers found it was.
MD5 is not "broken" or "not broken" - it depends on your particular
application. In this case, the attacker would need to generate
8 matches
Mail list logo
