Last Comment Bug 78837 - Page Info/Security: should have more info
: Page Info/Security: should have more info
Product: Core Graveyard
Classification: Graveyard
Component: Security: UI (show other bugs)
: Trunk
: All All
P2 enhancement with 14 votes (vote)
: ---
Assigned To: Nobody; OK to take it and work on it
: 79156 133519 135612 198824 253999 (view as bug list)
Depends on: 135255 78959
  Show dependency treegraph
Reported: 2001-05-03 20:00 PDT by Bob Lord
Modified: 2016-09-27 13:03 PDT (History)
17 users (show)
See Also:
QA Whiteboard:
Iteration: ---
Points: ---


Description User image Bob Lord 2001-05-03 20:00:54 PDT
The Security tab of the Page Info window should contain these items (sample text

Protocol: TLS 1.0 (or SSL v2, SSL v3, TLS 1.0, S/MIME v2 or v3)
Cipher: RC4 with 128-bit encryption
Key exchange: RSA, 1024-bit keys
Comment 1 User image Terry Hayes 2001-05-04 08:31:02 PDT
The protocol (TLS, SSL etc) and the key exchange information are not currently
available from the SSL interface.  nelsonb has proposed a new interface that
would provide some of this on the n.p.m.crypto newsgroup recently.

Until this interface is defined and implemented, this information cannot be
displayed.  Later to 2.1?
Comment 2 User image Bob Lord 2001-05-04 10:32:54 PDT
Moving to FUTURE for now.
Comment 3 User image John Unruh 2001-05-07 13:22:09 PDT
*** Bug 79156 has been marked as a duplicate of this bug. ***
Comment 4 User image Stephane Saux 2001-07-25 22:46:10 PDT
removing nsenterprise keyword from PSM bugs with target milestone of future.
Comment 5 User image John Unruh 2001-08-01 12:10:54 PDT
Mass assigning QA to ckritzer.
Comment 6 User image Nelson Bolyard (seldom reads bugmail) 2001-11-05 20:46:24 PST
The necessary underlying NSS functions are now added into NSS 3.4
so perhaps this bug shouldn't be "future" any more.
Comment 7 User image John Unruh 2002-03-26 09:46:26 PST
*** Bug 133519 has been marked as a duplicate of this bug. ***
Comment 8 User image John Unruh 2002-04-05 08:35:56 PST
*** Bug 135612 has been marked as a duplicate of this bug. ***
Comment 9 User image John Unruh 2002-06-24 09:54:44 PDT
*** Bug 153595 has been marked as a duplicate of this bug. ***
Comment 10 User image John Unruh 2002-06-28 08:23:48 PDT
*** Bug 154641 has been marked as a duplicate of this bug. ***
Comment 11 User image John Unruh 2003-01-13 13:01:05 PST
Comment 12 User image John Unruh 2003-03-27 12:44:24 PST
*** Bug 198824 has been marked as a duplicate of this bug. ***
Comment 13 User image Thomas Brown 2003-03-31 12:45:57 PST
While you're at it, add a "security info" icon to the bottom of the MailNews
window to show that you're authenticated via IMAPS or POP3S rather than IMAP/POP.
Comment 14 User image Samir Gehani 2003-05-14 17:24:59 PDT
adt: nsbeta1-
Comment 15 User image Robert La Ferla 2003-08-15 11:31:06 PDT
Also, please add the IP address of the web server you are connected to and TCP
port #(80,8080,443,etc..).  This will help in debugging server/dns issues.
Comment 16 User image ghost16825 2004-08-05 03:26:11 PDT
*** Bug 253999 has been marked as a duplicate of this bug. ***
Comment 17 User image Daniel Veditz [:dveditz] 2004-08-05 11:18:15 PDT
From dupe bug 253999, this is issue is discussed in this thread:
Comment 18 User image Nelson Bolyard (seldom reads bugmail) 2007-05-22 17:13:10 PDT
Johnathan,  Here's another UI enhancement worthy of your consideration.
Comment 19 User image timeless 2008-07-10 03:02:50 PDT
whether or not Firefox wants this, Gecko should offer it, an embedder may.

If that API exists (I'm fairly certain it doesn't), then this bug becomes trivial for an xul oriented person.
Comment 20 User image Bob Lord 2008-08-20 20:35:51 PDT
I think I had a full head of hair when I filed this bug. :-)

Timeless makes a very good point. 

Which of these requested attributes are available from NSS today?

Comment 21 User image Nelson Bolyard (seldom reads bugmail) 2008-08-20 21:39:48 PDT
Bob, thanks for the good laugh!  

All the stuff you want is available from NSS now, and has been for years.
These functions were added in 2001.

SECStatus SSL_GetChannelInfo(PRFileDesc *fd, SSLChannelInfo *info,
                             PRUintn len);
SECStatus SSL_GetCipherSuiteInfo(PRUint16 cipherSuite, 
                                 SSLCipherSuiteInfo *info, PRUintn len);
Comment 22 User image David Keeler [:keeler] (use needinfo?) 2016-08-29 13:09:04 PDT
The dialog now has pretty much everything from comment 0 (except for the size of the key protecting the key exchange/agreement, which is available in the end-entity cert), so I think we're good. If anyone wants to go above and beyond, that can be done in an add-on.

Note You need to log in before you can comment on or make changes to this bug.