Page 1 of 1
"Enabled the opt-in debugging feature to log SSL keys"
Posted: 2017-08-24, 15:11
by John connor
Wouldn't this be a security issue? If the browser can do it, a hacker can take advantage of it. Just like how stored passwords can be stolen. I never use the browser to store passwords and cookies are deleted on exit.
Re: "Enabled the opt-in debugging feature to log SSL keys"
Posted: 2017-08-24, 15:22
by Moonchild
This is only useful for debugging SSL conections.
It is also fully opt-in, so only the people who know they need it will ever enable it.
What set you off, seeing some keywords mentioned in a single statement? "SSL" "key logging"?
Re: "Enabled the opt-in debugging feature to log SSL keys"
Posted: 2017-08-25, 03:51
by John connor
Moonchild wrote:.
What set you off, seeing some keywords mentioned in a single statement? "SSL" "key logging"?
No, I read the description and immediately thought that with an option like that a hacker might have the ability to read the SSL keys.
Re: "Enabled the opt-in debugging feature to log SSL keys"
Posted: 2017-08-25, 08:15
by Moonchild
Well if the "hacker" is the person sitting at your computer, then yes
