On Sun, Jul 13, 2008 at 11:17:59AM +0000, Sam Morris wrote: > Note that Epiphany users cannot opt out of using the CACert certificate > because their certificate manager is broken. > > Do we *really* want to diverge from upstream here? I know CACert is a > great idea in theory, but Mozilla upstream has not added the certificate > and they have a long list of good reasons for doing so. Especially with > our recent security record in mind, we should think long and hard before > diverging from upstream in cases like this!
The fact is, anything that is not using nss, which is roughly anything but mozilla products, already know CACert. That even includes webkit. Also note that the dialog to opt-out certificates *does* work in Epiphany. Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
