On Thu, 2003-08-28 at 21:14, Crispin Flowerday wrote: > > Any comments are appreciated, especially HIG problems, bad wording, > reasons why it wouldn't be acceptable to epiphany in its current state > etc. Ahhh, what a nice example of security and usability being quite the exact opposites ;) I agree with David that the messages are a bit too long, but I'm having hard time figuring out how to shorten them any further. IMHO, the first dialog needs to include the following information: - the site you wanted to connect to - the site you actually connected to, as written in the certificate - what the mismatch means in practice, short and plain - a suggestion how to proceed if you have no clue what the above meant And for the last one (I think we can skip the CRL and expiration dialogs, they seem pretty concise to me, but what do I know...) like Eivind and Crispin said, accepting a certificate shouldn't be too easy. I like the extra step that the checkbox forces on you, I think it's a fairly good compromise. And yes, there should be a Help button in there, but it makes the dialog look horrible :-/ (I too know what the messages mean, though I haven't been that intimate with the SSL protocol itself.) -- Tommi Komulainen tommi.komulainen@iki.fi GPG 1024D/68388EE6 6FD6 DD79 EB38 BF6F 3533 09C0 04A8 9871 6838 8EE6
This is a digitally signed message part