Re: How pkcs#11 modules read the CONFIG_STRING from modutil -string command

On Thu, 17 Jun 2010 16:37:22 -0700 Robert Relyea wrote: > >> > >> I though C_Initialize, OpenSession or even InitToken at first, > >> but looking at the spec I couldn't immediately identify where I > >> could pass arbitrary data to configure the token. > >> > > See the explanation at > > htt

Re: Using NSS to export PKCS#12 pfx files

On 2010-06-15 14:17 PDT, John Scott wrote: > I'm doing the following to create a signed Firefox plugin > > http://oyoy.eu/huh/firefox-extension-code-signed-with-spc-pvk/ > > However, I'm trying to automate the process, and the first step would be > removing the need for pvkimprt. .NET code can ex

Re: "Permanently store this exception" selected by default

Hi, Given users' tendency to click-through security warnings, would it not perhaps be better for that box to be UNchecked by default? No. If its a legitimate selfsign cert, its best to store it - then the user won't be bothered but a real attack (changed cert again) would trigger the warning