Two short, practical examples, which are gleaned from reality (though
I am not at liberty to state of what organizations I speak):
One, educational institution. Due to compliance issues with student
data being improperly smuggled out of the administration area (in
reaction to an audit that found
Hi Kyle,
I'm reading your mail now for the third time, but somehow I fail to
understandSpecially the thing about "Businesses/organizations need
to be able to enforce their policies". Could you give me a short,
practical example how the proposal from Nelson would break things and
make it i
Kyle Hamilton wrote:
We don't know exactly what rules they enforce. We know that they permit
only a single '*', and do not permit any of the other forms of so-called
regular expressions that are presently recognized by NSS. We don't know
if they require any minimum number of dots to the right
On Dec 4, 2007 4:20 PM, Nelson B Bolyard <[EMAIL PROTECTED]> wrote:
> Gervase Markham wrote, On 2007-12-04 14:44:
> > Nelson Bolyard wrote:
> >> Now, there is a request asking that NSS's code for matching the
> >> application's desired host names to the names in the cert adopt the more
> >> restric
Gervase Markham wrote, On 2007-12-04 14:44:
> Nelson Bolyard wrote:
>> Now, there is a request asking that NSS's code for matching the
>> application's desired host names to the names in the cert adopt the more
>> restricting IETF standards, and the NSS team wholeheartedly agrees.
>
> What is the
Hi Gerv,
Gervase Markham wrote:
> How did a discussion about avoiding homograph spoofing turn into a
> suggestion that we only allow Latin characters?
>
Did you follow the thread actually? But I'd suggest we move this
discussion to a new thread since it's not related to this inclusion request
Hi Mert Özarar,
Mert Özarar (TÜRKTRUST) wrote:
> Our English website (beta version) is ready and have been uploaded
> under domain. http://www.turktrust.com.tr/e/ is the current URL...
Very nice, congratulations on that!
> "http://www.turktrust.com.tr/e/en51.jsp"; gives the current trust
> hiera
Nelson Bolyard wrote:
> Now, there is a request asking that NSS's code for matching the
> application's desired host names to the names in the cert adopt the more
> restricting IETF standards, and the NSS team wholeheartedly agrees.
What is the rationale for the request? Does it increase security
C.J. Adams-Collier wrote:
> Organization contact information; certificate of authenticity; certifying
> body; name, birth date, governmental ID, blood type, gender of all
> personnel; you know... the usual :)
We have some of this - see the list.
http://www.mozilla.org/projects/security/certs/pendi
Eddy Nigg (StartCom Ltd.) wrote:
> Pure ASCII / Latin characters would do...do we need a spec for that?
How did a discussion about avoiding homograph spoofing turn into a
suggestion that we only allow Latin characters?
That's entirely unreasonable. We've spent years working on things like
IDN t
dear All,
Once again thank you very much for your ideas, efforts and support for
our case. We are quite delighted with the overall performance of this
group and decided to follow up other topics in the group as well to
increase our knowledge and experience on the target subjects to add
value on ou
dear All,
Once again thank you very much for your ideas, efforts and support for
our case. We are quite delighted with the overall performance of this
group and decided to follow up other topics in the group as well to
increase our knowledge and experience on the target subjects to add
value on ou
12 matches
Mail list logo
