Pete Collins wrote:
is a decent start. Maybe eventually making the user jump through hoop's every time they attempt to install unsigned software or just eventually preventing it as suggested by others.
While there is plenty of built-in CAs giving free certs away for email I don't know of any doing this for code signing, I can't see how you can enforce this (for mozilla plug-ins) without either having the code signed by a person other then the person writing the code, or people loosing interest in making add-ons for mozilla...
--
Best regards, Duane
http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
