Ian G wrote: > Now, it may be said that SSL simply doesn't cover those, > which is fair, but security is an overall equation, which > means that unless the really big holes are covered, > there is no point in worrying too much about the small > holes.
Ummm 1 little problem here, if you remove the pop-ups, you increase the risk of someone making a certificate for "*", or even better yet, remove SSL altogether and have someone acting as a proxy, sure they may not listen on an open connection, but if you're able to proxy the data it's almost as easy... -- Best regards, Duane http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers "In the long run the pessimist may be proved right, but the optimist has a better time on the trip." _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
