Ulf Moeller wrote: > On Wed, Dec 20, 2000, Gary Feldman wrote: > > > Let's be fair. As your example really points out, the problem in this > > specific case (your example, not necessarily the "Accept this invalid > > certificate case") is with the developers, not the users. > > Which browser would that be? Netscape has no default, and with IE the > default is "no". Check IE 5.5's advanced options. Several security related defaults are shut off -- like checking the expiry on a cert and/or checking if a cert is revoked. -- Michael T. Babcock (PGP: 0xBE6C1895) http://www.fibrespeed.net/~mbabcock/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
- Re: Kurt Seifred's article on securityportal Eric Rescorla
- Re: Kurt Seifred's article on securityportal Greg Stark
- Re: Kurt Seifred's article on securityportal Kurt Seifried
- Re: Kurt Seifred's article on securityportal Jackie Chan
- Re: Kurt Seifred's article on securityportal Eric Rescorla
- Re: Kurt Seifred's article on securityportal Thomas Nichols
- Re: Kurt Seifred's article on securityport... Robert Sandilands
- Re: Kurt Seifred's article on security... Sean Wieland
- RE: Kurt Seifred's article on sec... Gary Feldman
- Re: Kurt Seifred's article on... Ulf Moeller
- Re: Kurt Seifred's article on... Michael T. Babcock
- Re: Kurt Seifred's article on... Sean Wieland
- Re: Kurt Seifred's article on securityportal Jeffrey Burgoyne
- Re: Kurt Seifred's article on securityportal Goetz Babin-Ebell
- Re: Kurt Seifred's article on securityportal Jeff Ritchie
- Re: Kurt Seifred's article on securityportal Douglas Wikström
- Re: Kurt Seifred's article on securityportal Kurt Seifried
- RE: Kurt Seifred's article on securityportal Fabro, Loic
- Re: Kurt Seifred's article on securityportal Eric Rescorla
- Re: Kurt Seifred's article on securityportal Michael Sierchio
- Re: Kurt Seifred's article on securityport... Thomas Nichols
