Kyle Hamilton wrote, On 2009-03-19 23:07:
> My reason for the conservative time suggestions is because that's what
> banks tend to use (my bank times me out after 15 minutes of
> inactivity, as does my phone company, and my electric company, and
> PayPal, and...).
But those are *minutes of inac
On Thu, Mar 19, 2009 at 8:29 PM, Nelson B Bolyard wrote:
> Joe Orton wrote, On 2009-03-19 15:15:
>> Going from 3 minutes to 10 minutes doesn't seem like it will save the
>> world (if 3 minutes was indeed putting the world at risk).
>
> Agreed. For most users 4 or 8 hours is more reasonable, to av
Joe Orton wrote, On 2009-03-19 15:15:
> On Wed, Mar 18, 2009 at 07:42:12AM -0700, Kyle Hamilton wrote:
>> I think a reasonable default would be about 10 or 15 minutes, with a
>> refresh of the session (moving it back to 0 minutes) every successful
>> request?
>
> With the default mod_ssl cache, I
d...@chromium.org wrote, On 2009-03-19 14:06:
> On Mar 18, 4:46 pm, Nelson B Bolyard wrote:
>>> Hmm. Can't find 3.12.2.
>>> http://www.mozilla.org/projects/security/pki/nss/nss-3.12.2/nss-3.12.2-release-notes.html
>>> says it's at
>>> https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/
On Wed, Mar 18, 2009 at 07:42:12AM -0700, Kyle Hamilton wrote:
> I think a reasonable default would be about 10 or 15 minutes, with a
> refresh of the session (moving it back to 0 minutes) every successful
> request?
With the default mod_ssl cache, I think that the session should already
get stor
On Thu, Mar 19, 2009 at 2:06 PM, wrote:
>
> For completeness, the full recipe for linux is
> cd $HOME
> mkdir nss-3.12.2
> cd nss-3.12.2
> export CVSROOT=:pserver:anonym...@cvs-mirror.mozilla.org:/cvsroot
> cvs login
> cvs co -r NSPR_4_7_RTM NSPR
> cvs co -r NSS_3_12_2_RTM NSS
> cd mozill
On Mar 18, 4:46 pm, Nelson B Bolyard wrote:
>> Hmm. Can't find 3.12.2.
>> http://www.mozilla.org/projects/security/pki/nss/nss-3.12.2/nss-3.12.2-release-notes.html
>> says it's at
>> https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_12_2_RTM/
>> but that directory doesn't exist.
attached picture uploaded to
http://www.kepfeltoltes.hu/view/090319/asn1parse_www.kepfeltoltes.hu_.jpg
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
[mailto:dev-tech-crypto-bou
> Will be then the multiple OCSP inclusion? (This time ok, the software can
> only check the first, but later the others too.)
Yes, including multiples of these things won't hurt. Firefox won't
crash or refuse to connect because multiple URIs for these things exist.
It will just ignore som
>> There are a small number of external CAs that have been signed by our root.
Of the four roots being considered for inclusion (TC TrustCenter Class
1 CA, TC TrustCenter Class 2 CA II, TC TrustCenter Class 3 CA II, TC
TrustCenter Universal CA I) which one(s) have or will have subordinate
CAs that
10 matches
Mail list logo
