HJ wrote:
I have a working concept that might be used for VanillaZilla, but I
don't know if this is what you need/like:
Here's a screenshot of MultiZilla's BIM (Browser Info Message)
displayed when a new SSL protected site, without SSL Hash key, has
been detected:
http://multizilla.mozdev.org/screenshots/features/spoofing/new-ssl-site-bim.jpg
Here's a screenshot after you click on the displayed BIM:
http://multizilla.mozdev.org/screenshots/features/spoofing/new-ssl-site-bimsheet-overview.jpg
Having troubles reading the text, try this one:
http://multizilla.mozdev.org/screenshots/features/spoofing/new-ssl-site-bimsheet.jpg
I also modified MultiZilla's Advanced Pref Panel, here's a screenshot
of it:
http://multizilla.mozdev.org/screenshots/features/spoofing/idn-support-pref-panel.jpg
Anyway, you may, or may not, nitpick about the used text and what not,
but a fact is a fact, this works for MultiZilla users, but what do you
think about this?
These are fantastic! Rush them out!
Yes, I would nitpick on the text you use :-) The error message
in the first picture seems meaningless tech drivel on first
casual reading.
Perhaps: "MultiZilla thinks 'www.dodgy.com' is a new website, ..."
Experimentation called for here.
(The next steps after that is to consider how you display the CA
name, and how you would store a petname for that site.)
Good stuff!
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
_______________________________________________
Mozilla-security mailing list
Mozilla-security@mozilla.org
http://mail.mozilla.org/listinfo/mozilla-security