> Say you have an HTTPS bookmark to your bank. You visit it (your techie > friend told you "always use this bookmark for your bank, and you'll be > safe"),
So now you trust a user writable reference over a non writable installed CA crt (I hope soon to be replaced by website provided keys signed by mozilla/Google) -- _______________________________________________________________________ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) _______________________________________________________________________ _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
