On 27/12/08 20:01, Eddy Nigg wrote:
On 12/27/2008 05:38 PM, Florian Weimer:
Isn't that, by itself, a very good reason to take immediate action?
Security should be default-fail rather than default-pass.
This is not about security, this is about the presence or absence of
an obscure browser warning.
Huuu? Have you understood the issue at all? I'm not sure...however it's
not about browser warnings. This is about security proper. Or how else
would you explain an MITM attack?
Security proper is about risks and threats and costs for end-users. Ask
them whether they are worried about an MITM attack :)
Anyway, old debate, not going to be solved today.
iang
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
