In the newsgroup news://news.mozilla.org:119/netscape.public.mozilla.browser in a thread named "Master Password", there is a discussion about the absence of UI for setting or using a Master Password in Thunderbird.
As a consequence of this lack of UI, it is reported in that thread that
a) users of profiles with key DBs that had a master password cannot use those key DBs with thunderbird (no way to enter the master PW), and
b) users cannot password protect their key DBs or their saved password files (no way to set the master password).
Look especially at these two articles:
news://news.mozilla.org:119/[EMAIL PROTECTED] news://news.mozilla.org:119/[EMAIL PROTECTED]
Now, if it's true that TBird users CANNOT password protect their key DBs, then I think we (NSS developers) should insist that this be fixed. This is a GROSS security hole. Perhaps we should declare a moratorium on additional NSS work until this capability is restored ot the TBird UI.
I'd be very happy for some TBird users to tell me that Mr. Gable is mistaken
about the absence of Master Password UI in TBird, but no-one has yet contradicted him in that newsgroup over this issue.
/Nelson _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
