Merge branch 'master' of http://scm.trinitydesktop.org/scm/git/tdelibs

author: Darrell Anderson <[email protected]> 2013-03-02 15:57:34 -0600
committer: Darrell Anderson <[email protected]> 2013-03-02 15:57:34 -0600
commit: 7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f (patch)
tree: c76702a7f6310fbe9d437e347535422e836e94e9 /tdeio/kssl/SECURITY-HOLES
parent: a2a38be7600e2a2c2b49c66902d912ca036a2c0f (diff)
parent: 27bbee9a5f9dcda53d8eb23863ee670ad1360e41 (diff)
download: tdelibs-7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f.tar.gz
tdelibs-7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f.zip
1 files changed, 17 insertions, 0 deletions
diff --git a/tdeio/kssl/SECURITY-HOLES b/tdeio/kssl/SECURITY-HOLES
new file mode 100644
index 000000000..62b8e9ca7
--- /dev/null
+++ b/tdeio/kssl/SECURITY-HOLES
@@ -0,0 +1,17 @@
+List of known security holes in KDE's SSL implementation and HTTPS support in
+Konqueror.
+-----------------------------------------------------------------------------
+
+
+1)  Caching should be done on a per-host basis, not per-certificate.
+
+2)  Autocompletion in form fields in HTTPS mode will result in various fields
+such as pin numbers and possibly credit cards or other sensitive information
+being silently written to disk in some cases.
+
+
+3)  Certificate revocation lists (CRLs) are not implemented.  This should be
+done after 2.2.
+
+
+
author	Darrell Anderson <[email protected]>	2013-03-02 15:57:34 -0600
committer	Darrell Anderson <[email protected]>	2013-03-02 15:57:34 -0600
commit	7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f (patch)
tree	c76702a7f6310fbe9d437e347535422e836e94e9 /tdeio/kssl/SECURITY-HOLES
parent	a2a38be7600e2a2c2b49c66902d912ca036a2c0f (diff)
parent	27bbee9a5f9dcda53d8eb23863ee670ad1360e41 (diff)
download	tdelibs-7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f.tar.gz tdelibs-7c0b0c9dc9fcbe9c198925bdc7ee18ac6be49f4f.zip