Last Comment Bug 78837 - Page Info/Security: should have more info
: Page Info/Security: should have more info
Status: RESOLVED WORKSFORME
[kerh-ehz][psm-feedback]
:
Product: Core Graveyard
Classification: Graveyard
Component: Security: UI (show other bugs)
: Trunk
: All All
: P2 enhancement with 14 votes (vote)
: ---
Assigned To: Nobody; OK to take it and work on it
:
:
Mentors:
: 79156 133519 135612 198824 253999 (view as bug list)
Depends on: 135255 78959
Blocks:
  Show dependency treegraph
 
Reported: 2001-05-03 20:00 PDT by Bob Lord
Modified: 2016-09-27 13:03 PDT (History)
17 users (show)
See Also:
QA Whiteboard:
Iteration: ---
Points: ---


Attachments

Description Bob Lord 2001-05-03 20:00:54 PDT
The Security tab of the Page Info window should contain these items (sample text
supplied):

Protocol: TLS 1.0 (or SSL v2, SSL v3, TLS 1.0, S/MIME v2 or v3)
Cipher: RC4 with 128-bit encryption
Key exchange: RSA, 1024-bit keys
Comment 1 Terry Hayes 2001-05-04 08:31:02 PDT
The protocol (TLS, SSL etc) and the key exchange information are not currently
available from the SSL interface.  nelsonb has proposed a new interface that
would provide some of this on the n.p.m.crypto newsgroup recently.

Until this interface is defined and implemented, this information cannot be
displayed.  Later to 2.1?
Comment 2 Bob Lord 2001-05-04 10:32:54 PDT
Moving to FUTURE for now.
Comment 3 John Unruh 2001-05-07 13:22:09 PDT
*** Bug 79156 has been marked as a duplicate of this bug. ***
Comment 4 Stephane Saux 2001-07-25 22:46:10 PDT
removing nsenterprise keyword from PSM bugs with target milestone of future.
Comment 5 John Unruh 2001-08-01 12:10:54 PDT
Mass assigning QA to ckritzer.
Comment 6 Nelson Bolyard (seldom reads bugmail) 2001-11-05 20:46:24 PST
The necessary underlying NSS functions are now added into NSS 3.4
so perhaps this bug shouldn't be "future" any more.
Comment 7 John Unruh 2002-03-26 09:46:26 PST
*** Bug 133519 has been marked as a duplicate of this bug. ***
Comment 8 John Unruh 2002-04-05 08:35:56 PST
*** Bug 135612 has been marked as a duplicate of this bug. ***
Comment 9 John Unruh 2002-06-24 09:54:44 PDT
*** Bug 153595 has been marked as a duplicate of this bug. ***
Comment 10 John Unruh 2002-06-28 08:23:48 PDT
*** Bug 154641 has been marked as a duplicate of this bug. ***
Comment 11 John Unruh 2003-01-13 13:01:05 PST
>Kaie. 
Comment 12 John Unruh 2003-03-27 12:44:24 PST
*** Bug 198824 has been marked as a duplicate of this bug. ***
Comment 13 Thomas Brown 2003-03-31 12:45:57 PST
While you're at it, add a "security info" icon to the bottom of the MailNews
window to show that you're authenticated via IMAPS or POP3S rather than IMAP/POP.
Comment 14 Samir Gehani 2003-05-14 17:24:59 PDT
adt: nsbeta1-
Comment 15 Robert La Ferla 2003-08-15 11:31:06 PDT
Also, please add the IP address of the web server you are connected to and TCP
port #(80,8080,443,etc..).  This will help in debugging server/dns issues.
Comment 16 ghost16825 2004-08-05 03:26:11 PDT
*** Bug 253999 has been marked as a duplicate of this bug. ***
Comment 17 Daniel Veditz [:dveditz] 2004-08-05 11:18:15 PDT
From dupe bug 253999, this is issue is discussed in this thread:
http://www.security-forums.com/forum/viewtopic.php?t=17955&start=0&postdays=0&postorder=asc&highlight=
Comment 18 Nelson Bolyard (seldom reads bugmail) 2007-05-22 17:13:10 PDT
Johnathan,  Here's another UI enhancement worthy of your consideration.
Comment 19 timeless 2008-07-10 03:02:50 PDT
whether or not Firefox wants this, Gecko should offer it, an embedder may.

If that API exists (I'm fairly certain it doesn't), then this bug becomes trivial for an xul oriented person.
Comment 20 Bob Lord 2008-08-20 20:35:51 PDT
I think I had a full head of hair when I filed this bug. :-)

Timeless makes a very good point. 

Which of these requested attributes are available from NSS today?

Comment 21 Nelson Bolyard (seldom reads bugmail) 2008-08-20 21:39:48 PDT
Bob, thanks for the good laugh!  

All the stuff you want is available from NSS now, and has been for years.
These functions were added in 2001.

SECStatus SSL_GetChannelInfo(PRFileDesc *fd, SSLChannelInfo *info,
                             PRUintn len);
SECStatus SSL_GetCipherSuiteInfo(PRUint16 cipherSuite, 
                                 SSLCipherSuiteInfo *info, PRUintn len);
Comment 22 David Keeler [:keeler] (use needinfo?) 2016-08-29 13:09:04 PDT
The dialog now has pretty much everything from comment 0 (except for the size of the key protecting the key exchange/agreement, which is available in the end-entity cert), so I think we're good. If anyone wants to go above and beyond, that can be done in an add-on.

Note You need to log in before you can comment on or make changes to this bug.