Hello everybody,
I am developing a PKCS11 module, and when testing it in Firefox (3.6.3 for
eg.), despite selecting remember selected certificate
I do get multiple certificate selection dialogs in sequence at SSL session
start...so I have to reselect the same cert, say twice...
I enter the
Šandor Feldi wrote:
I do get multiple certificate selection dialogs in sequence at SSL
session start...so I have to reselect the same cert, say twice...
I enter the https of the target site, I get asked about the cert - I
select it, then the site displays my info and offers me anenter
site
Eddy Nigg wrote:
Isn't this actually a sign that the technology works? I mean, 100% false
positives means literally 100% success.
Shit no !
The higher the false positive rate, the more acute the failure.
People will trust and respect the warning *only* if there's a very low
rate of false
Jean-Marc Desperrier wrote:
The web site is also something you develop ?
Thanks for answering. No I do not develop the site and don't have any way to
access or configure apache, and it happens
on different sites too... I forgot to point out, that when importing a
certificate into Firefox's NSS
Marsh Ray wrote:
What do you propose other than not letting the user bypass
the cert error page at all?
Investing some serious time enhancing those errors.
Or investing some serious time evangelising the SSL site owners into
using a real certificate.
But the statu quo doesn't work.
On 05/19/2010 01:30 PM, From Jean-Marc Desperrier:
Eddy Nigg wrote:
Isn't this actually a sign that the technology works? I mean, 100% false
positives means literally 100% success.
Shit no !
The higher the false positive rate, the more acute the failure.
Well, just for the record, lets get
On 05/19/2010 05:37 PM, From Jean-Marc Desperrier:
Or investing some serious time evangelising the SSL site owners into
using a real certificate.
But the statu quo doesn't work.
Amen! And you know what - today there is NO reason whatsoever not to get
real certs, they are available from
hi,
I'm trying to build nss but i have some problems with nspr build. When
creating libnspr4.lib library, it raises symbol not found for a lot
of __PR_ declarations.
Does anyone have encountered that problem ?
Toki
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
On 5/19/2010 10:32 AM, Eddy Nigg wrote:
On 05/19/2010 05:37 PM, From Jean-Marc Desperrier:
Or investing some serious time evangelising the SSL site owners into
using a real certificate.
But the statu quo doesn't work.
Amen! And you know what - today there is NO reason whatsoever not to
Today I read some technical documents at http://www.torproject.org which
is a project that tries to enhance anonymity of Internet users, or allow
Internet users to circumvent censorship.
With Tor, your outgoing connections will be routed (using encryption) to
a chain of random Tor servers,
On 2010-05-19 03:40 PDT, Šandor Feldi wrote:
Jean-Marc Desperrier wrote:
The web site is also something you develop ?
Thanks for answering. No I do not develop the site and don't have any way
to access or configure apache, and it happens on different sites too... I
forgot to point out, that
Hello, I would like to ask your advice on how to best deal with a
problem related to deleting certificates/keys.
I'm currently experimenting with creating short-lived certificates for
TLS-client-authentication using the keygen element. While it seems
easy to create the keys/certs, I have more
On 05/19/2010 02:51 PM, Bud P. Bruegger wrote:
Hello, I would like to ask your advice on how to best deal with a
problem related to deleting certificates/keys.
I'm currently experimenting with creating short-lived certificates for
TLS-client-authentication using the keygen element. While it
Kai
To perform a successful MITM attack on a connection between a victim client
and a victim server, the attacker must have two things:
1) one or more certificates that bear a public key whose corresponding
private key is known to the attacker, and which certificates will be
accepted by the
14 matches
Mail list logo
