Re: Link-fingerprints: weak unless link received securely

Gervase Markham wrote: > Nelson B wrote: >> One needs a trusted source AND a trusted channel to that source. > > Yes, although there's also a "herd immunity" feature, as I discuss below. > > At the moment, spotting things like the Wordpress download tarball > trojan took quite a while, because s

Re: Adding certificates to the nss database

Assuming that you have an X.509 certificate in either Base64 or DER format, you can use the nsIX509CertDB.importUserCertificate() method: http://www.xulplanet.com/references/xpcomref/ifaces/nsIX509CertDB.html#method_importUserCertificate. Notice that, this method expects that the private key for