TOFU: don't most browsers tell you if you've been to the site before, and whethe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jessaustin on April 9, 2014 \| parent \| context \| favorite \| on: OpenSSL is written by monkeys (2009) TOFU: don't most browsers tell you if you've been to the site before, and whether the cert has changed since your last visit? I seem to recall that at one time Firefox could be configured to not even complain when it saw a self-signed cert it recognized?

kedean on April 9, 2014 [–]

No. That is a capability provided by an extension called CertPatrol, at least in the Firefox ecosystem.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact