Duane wrote:
Pete Collins wrote:
is a decent start. Maybe eventually making the user jump through
hoop's every time they attempt to install unsigned software or just
eventually preventing it as suggested by others.
While there is plenty of built-in CAs giving free certs away for email
I don't know of any doing this for code signing, I can't see how you
can enforce this (for mozilla plug-ins) without either having the code
signed by a person other then the person writing the code, or people
loosing interest in making add-ons for mozilla...
This is the issue. It's hard enough to write stuff
as it is ... what system can be invented that doesn't
make it even harder to write and publish a nice
plugin?
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
