Sveiki, Wednesday, April 6, 2011, 8:56:31 PM, you wrote:
> This is what the confirmation dialog does. It says "I have this > certificate that I don't trust, do you trust it?" and also gives the > details for the certificate. This means that the user has the control > to decide whether or not to trust the source. This moves the > responsibility for authorising a given certificate from a known flawed > implicit mechanism to a user authorization. Yeah, but how does the user know if this is really a certificate he is thinking it is? He must call other end for example by phone and ask for certificate fingerprint, check it on certificate he is accepting, etc. In my opinion this is still a certification of other end, just without automatic technical means. > Which is safer depends on many factors, where you live, how much you > know, etc. As I said before, this is a philosophical discussion more > than a technical issue. Agreed. -- Best regards, Vilius ________________________________________________________ Current beta is 5.0.6.1 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html
