When the form submission URL does not use SSL, the message could say
"Information entered here is publicly visible."
That's not correct, though. It's not posted on some bulletin board for all to see.
I still think that any such notification would become irritating to the user. Better to disable form controls in situations where we are suspicious of the site.
Gerv _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
