Proposed F19 Feature: Package Signature Checking During Installation
Bruno Wolff III
bruno at wolff.to
Tue Jan 22 15:23:51 UTC 2013
On Thu, Jan 10, 2013 at 23:43:07 +0100,
Björn Persson <bjorn at rombobjörn.se> wrote:
>
>And since people don't check the certificate anyway it would be better
>if Firefox would silently switch to plain HTTP when it can't verify the
>certificate? Not just use the unverified certificate but skip all the
>cryptography altogether without even telling the user about it? Would
>that improve anything? Because that's the equivalent of what Anaconda
>does.
It would be better if it just noted that it didn't trust the certificate
chain and continued using https, since that would still provide protection
from eaves dropping by passive attackers.
More information about the devel
mailing list