prodizy wrote:
Hi,
If the key3.db is deleted, all the forms & passwords remembered by
Firefox are lost? Isn't it a bad thing?
Actually should should only loose the passwords. That is because the
passwords are encrypted with a key stored in key3.db and protected by
your password.
If you start deleting random files in your profile, bad things do
happen. deleting your *.s file in that directory will have the same effect.
That being said, Mozilla is missing the ability to backup that key used
to encrypt your passwords.
And also, why nsIPK11Token.checkPassword() throws and exception if the
master password is not set before. Is it because the slot is not
initiailized? If the master password is set atleast once before then
there's no problem. What is the best way to initialize the master
password without user input?
The idea is the user should have a chance to choose if there is a
password or not. You can initialize the master password to 'NULL' and
never be prompted. This is legacy behavior, and we should probably
reevaluate this again.
For doing this, I am using
nsIPK11Token.needsUserInit & nsIPK11token.initPassword(). Is that ok?
That's the correct code to check to see if the token has an initialized
password.
Am I missing something?
Also, what is the functionality of nsIPK11Token.isFriendly()? Where
will I get documentation(other than xulplanet.com) for nsIPK11Token?
isFriendly() should be isPublicallyReadable(). It tells if the certs in
a token can be examined without logging into the token (well actually
can we read the certs and determine whether or not they are user certs
without logging into the token).
I'm afraid there is even less documentation on nsIPK11Token as there is
on the underlying pk11wrap code it is built on. We're trying to
consolidate things at http://developer.mozilla.org/en/docs/NSS
bob
Thanks,
Rajendra Prasad Murakonda,
http://prodizy.livejournal.com/
_______________________________________________
dev-tech-crypto mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-crypto
_______________________________________________
dev-tech-crypto mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-crypto
