Robert List wrote: > > Hallo! > > I have developed a pkcs11 library according to the austrian signature > legislation. > > NSS queries every Token for Trust-Objects, which are in the Buildin Token. > > If I answer with a Trust Object the settings I return are used by the NSS. > It is possible to enable for instance code signing for CAs, or to > disable a CA.
That's correct. How is this a security problem? > Thanks > Robert List -- Nelson Bolyard Netscape Communications (subsidiary of AOL) Disclaimer: I speak for myself, not for Netscape
