On 28/01/2010 07:47, Daniel Veditz wrote: > We can't control what web sites do, but if we make the experience nicer > more sites may be encouraged to use things like HTTP Auth. Personally > I'd like to see client certs used for auth but we really have a lot of > work to do to make that a pleasant experience for anyone.
This is why I try to use OpenID where possible, since my provider supports certificate login, which removes the necessity from the web site to support it (as long as it supports OpenID of course). _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security