Package: iceweasel Version: 3.0.1-1 Severity: normal Hello,
it seems that the storage for SSL certificate exceptions is limited, and used as circular buffer. I visit a lot of sites with self-signed certificates, and from time to time I have to confirm all exceptions again as if I visit the site for the first time. This is not only annoying but dangerous. What if the site certificate changes and Iceweasel just forgets the old certificate. No warning etc. In firefox2 - exceptions were really stored permanently and I got warnings when the certificate expired or changed. But adding the same certificate over and over again will just train the user to add the exception as quickly as possible without really checking the content of the certificate. It seems that firefox bugzilla report 436122 might be related to this. Regards Vladislav Kurz -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages iceweasel depends on: ii debianutils 2.17 Miscellaneous utilities specific t ii fontconfig 2.4.2-1.2 generic font configuration library ii libc6 2.7-10 GNU C Library: Shared libraries ii libgcc1 1:4.2.1-4 GCC support library ii libglib2.0-0 2.16.3-2 The GLib library of C routines ii libgtk2.0-0 2.12.10-2 The GTK+ graphical user interface ii libnspr4-0d 4.7.1-3 NetScape Portable Runtime Library ii libstdc++6 4.2.1-4 The GNU Standard C++ Library v3 ii procps 1:3.2.7-3 /proc file system utilities ii psmisc 22.3-1 Utilities that use the proc filesy ii xulrunner-1.9 1.9.0.1-1 XUL + XPCOM application runner iceweasel recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
