Eddy Nigg wrote:
[...] When do we expect SSL? On submit or on password fields in a form[...]
IF "page contains form" AND "form contains password field" THEN "flash insecure form warning"Could be done. But there would better be a cross browser agreement on this. And coupled with a way to offer (low/no)-cost SSL to everybody.
_______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
