Mozilla - Security

This forum is an archive for the mailing list dev-security@lists.mozilla.org (more options) Messages posted here will be sent to this mailing list.
Security issues such as specific security problems or ideas for making the code as a whole more secure can be discussed here. Cryptography, however, is not within this group's charter.
12345 ... 25
Topics (862)
Replies Last Post Views
HTML5 video streaming and flash by Kevin Chadwick
3
by Kevin Chadwick
OCSP validation with libnss3 by Alfredo Esteban
0
by Alfredo Esteban
Firefox's support for Windows Vista by Marek Jakubiszyn Gaz...
1
by Daniel Veditz-2
Security review of Resource Timing by Anne van Kesteren
1
by Steve Workman
Cross-Compilation of NSS for MIPS platform fails. by ramyasivanesan36
0
by ramyasivanesan36
Trust bits for client auth by Rick Andrews-2
3
by David Keeler-2
TLS Feature Extension ocsp must staple demonstration by Dan Bryan
5
by Hubert Kario
NSS on OS X ? by almosnow
1
by Martin Thomson
First-Party-Only cookies by Mark Goodwin-4
16
by Mike West
Problems with Mozilla opening most pages by Someone495
0
by Someone495
Initializing FIPS mode by jonetsu
1
by Daniel Veditz-2
Platform and UX by Anne van Kesteren
1
by Marcio Galli-3
Issues with Openmailbox IMAP server by fadelkon
1
by fadelkon
Do Firefox for desktop 43.0.2 and 38.5.2 ESR fix any security vulnerability or not? by Steven Ng
0
by Steven Ng
regarding nss 3.20 by Suman.Patro-TRN
1
by Suman.Patro-TRN
UK Government's documentation on Firefox security by Gervase Markham
9
by Gervase Markham
Re: HTTP is just fine -- v. HTTP is insecure --> need a better metaphor by Chris Hofmann-2
11
by Kevin Chadwick
Pledge and firefox by Kevin Chadwick
0
by Kevin Chadwick
Get HTTPS to 90% (was: HTTP is just fine) by Ben Bucksch
0
by Ben Bucksch
Car seatbelts (Was: Re: HTTP is just fine -- v. HTTP is insecure --> need a better metaphor) by Boris Zbarsky
6
by Ben Bucksch
HTTP is just fine (was: Marking HTTP As Non-Secure) by Ben Bucksch
53
by Kevin Chadwick
Mozilla Cloud non-Decryptable Download? by miro.rovis
11
by miro.rovis
Potential changes to cookies in Chrome. by Mike West-2
0
by Mike West-2
Re: UK Government's documentation on Firefox security by Ben Bucksch
2
by Francois Marier
Marking HTTP As Non-Secure by Raúl Martínez
1
by Chris Palmer
On the future of <keygen> and application/x-x509-*-cert MIME handling by David Keeler-2
13
by Richard Barnes
How do i extract the text version of a certificate from a CERTCertficate structure? by Mazola Winstrol
2
by Mazola Winstrol
Static analysis of JS to find malicious obfuscation by tofumatt
1
by Paul Theriault
Converting malloc() calls to calloc() by Michael McConville
0
by Michael McConville
Certificate exception for github.com not working with built-in root CAs removed by klasse
2
by klasse
TLS_DHE_RSA_WITH_AES_128_CBC_SHA and SSLKEYLOG by spa
1
by kyprizel
Re: On the future of <keygen> and application/x-x509-*-cert MIME handling by Henry Story
0
by Henry Story
TLS_DHE_RSA_WITH_AES_128_CBC_SHA and SSLKEYLOG by spa
0
by spa
Smart Card and WebCrypto (Re: On the future of <keygen> and application/x-x509-*-cert MIME handling) by Tim Guan-tin Chien
6
by Joseph Lorenzo Hall
Problems withunwanted blocking of ''mixed content'' by Someone495
0
by Someone495
12345 ... 25