Ian G wrote:
Right, but we've excluded them, right? They could set up 40 bit, 128 bit, 4096 bit for all we care, and the proxy would still read A-OK. What this means is that the user has been forced to accept the ISP as an insider into their PC. Nothing SSL can do about that except ... operate over HTTP :)
Geez no wonder people pull root certs out of their browser... _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
