[cap-talk] A petname toolbar for Firefox - self signed
certs and warning popups
David Wagner
daw at cs.berkeley.edu
Tue Feb 22 15:44:18 EST 2005
Jed writes:
>At 07:39 PM 2/18/2005, David Wagner wrote:
>>[...] use self-signed HTTPS certificates [...]
>
>I believe the reason more people don't take the above approach is that
>browsers are configured to complain if the certificate signing authority
>isn't in their default set. That produces an annoying popup [...]
Yes, absolutely.
>Who among us wants our users to see such warnings about site
>misconfiguration or sites pretending to be who they aren't to obtain
>our confidential information?
Right. That is the practical barrier, and it is a significant one.
I agree 100%.
More information about the cap-talk
mailing list