Hi, ----- Original Message ----- From: "Julien Pierre" <[email protected]> To: "mozilla's crypto code discussion list" <[email protected]> Cc: "Ryan Sleevi" <[email protected]>, [email protected] Sent: Monday, December 31, 2012 7:44:03 PM Subject: Re: Proposing: Interactive Domain Verification Approval
> Indeed. If we want to educate any users, it should be about not > submitting things over plaintext connections Tanvi Vyas has proposed and done a fair bit of design/thinking about a feature based around not submitting passwords over HTTP, see https://wiki.mozilla.org/Security/Features/HighlightCleartextPasswords cheers, ian _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
