Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Software - Troubleshooting and Discussion > Applications > Certificate security checks in Safari

Certificate security checks in Safari
Thread Tools
allblue
Forum Regular
Join Date: May 2005
Location: Somewhere they can't find me
Status: Offline
Reply With Quote
Feb 19, 2006, 04:21 AM
 
Having just been reading about the Leap-A Trojan I went to check my security settings in the Safari Debug menu (enabled by TinkerTool). In the drop-down menu there are four options:

Performs strict certificate tests
Performs lax certificate checks
Allows expired certificates
Allows expired root certificates

I've never touched these before and it has defaulted to the last one - 'Allows expired root certificates'. Is this a potential security issue? If I was to set it to 'Performs strict certificate tests' what would be the payoff in terms of slowdown/non-access to sites - if any? If TinkerTool was not present, and hence there was no Debug menu, would Safari allow expired root certificates as it's unalterable default?
"Believe nothing, no matter where you heard it, or who has said it, not even if I have said it, unless it agrees with your own reason and your own common sense."

Buddha
     
   
Thread Tools
Forum Links
Forum Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Top
Privacy Policy
All times are GMT -5. The time now is 03:15 AM.
All contents of these forums © 1995-2011 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.7 © 2000-2011, Jelsoft Enterprises Ltd., Content Relevant URLs by vBSEO 3.3.2