Bug#586836: iceweasel: unknown server certificates should - if accepted - not be made permanent per default
Christoph Anton Mitterer
calestyo at scientia.net
Tue Jun 22 22:10:06 UTC 2010
Package: iceweasel
Version: 3.5.9-3
Severity: wishlist
Hi.
May I, for security reasons, suggest that if a user gets the well known dialog when accessing an
https-site, for which the certificate is not yet trusted somehow, the "Permanently store this
exception" check box should be unchecked per default.
One often access SSL sites, which cannot be "trusted" (at least from the Firefox point of view)
but this is often no problem, as one does not intend to enter or rely on any secured information
anyway.
However, per default the checkbox "Permanently store this exception" in the exception-dialog is
enabled, which I guess, is bad for security reasons (as it would be permanent).
Thanks,
Chris.
More information about the pkg-mozilla-maintainers
mailing list