What are the plans to fix SSL. Would it be good to have a collaborated, IE, Firefox, Chrome single free CA (like startssl) where the rogue CA issue is prevented and security could be handled properly by eventually removing all other CAs from browsers.
A domain control check could be automated via email or like how google adwords does with a html file. They would probably even let their adwords system be used if they think it's more practical than their web of trust lookup site experiment. EVs are a waste of money except for keeping misinformed customers anyway. Site rating seals are far better. _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security