Mozilla With Crypto Code Released 136
physicman writes "I just read on MozillaZine that there is finally a release containing the new crypto code. This means we will eventually get the chance to get access to secure Websites with our favorite nearly-in-beta-stage browser.
" Mozilla's really been making a lot of progress recently -- and it looks great.
Yeah that's a good idea (Score:2)
US Security (Score:1)
Now the crypto is opensource?
I'm still waiting for Netscape 6.0
M14 + cyrypto (Score:1)
Are there issues redistributing?
I rather hope not; I am writing this with plain M14
and liking it lots.
Mozilla at Last? (Score:1)
AOL/Netscape have taken long enough. Though when I
have time then I'll be able to play with what looks like a great browser. It'll match will the rest of the GTK arena that is my home..All those
pretty GTK themes on my browser.It'll also allieviate the poor browsing selection for Linux/Alpha!
Re:US Security (Score:2)
While you were asleep in the past few months, the US government published new rules on cryptography. You can find more details on how this affected Mozilla on their their website [mozilla.org].
Re:Yeah that's a good idea (Score:1)
~luge
Re:Yeah that's a good idea (Score:2)
wow! A first post with some substantive content!
Of course there are some problems with that. However, if the crypto code is secure, I would have little trouble using it for my everyday banking online. I'm only dealing with hundreds of dollars at a time, though - if I was dealing with tens of thousands, I'd be paranoid about such stuff.
How many people worry about security on the internet, while not keeping their credit card carbons? Or, for that matter, trusting their credit cards to $6.00/hour clerks in stores they frequent? Or keeping a 4-digit PIN for their ATM card? A beta browser using existing tested crypto code seems to be safer than most of those ideas.
Re:US Security (Score:1)
Hopefully the good folks at mozilla.org will cross-compile as much of these crypto libraries as possible in the meanwhile. Heck, I'd let them do it natively on my machine.
John
Mozilla's really coming along nicely (Score:1)
still pointless (Score:1)
Re:Yeah that's a good idea (Score:3)
Don't get excited yet; wait until after 9/20/2000 (Score:5)
Of course this is not Netscape's or Mozilla's fault. The fault lies entirely with RSA Data Laboratories, who refuse to license their patented RSA algorithm to any open source projects. While liberalization of US export laws is very nice, I think we're going to have to wait until after the RSA patent expires on Sept. 20 before people outside of Netscape (well, US citizens anyway) can start to tinker with the cryptography software themselves.
It's fascinating how RSA Data Laboratories was able to force the whole world to use RSA as their public key cryptography standard instead of the technically superior Diffie-Hellman/El Gamal algorithm. They did this by simply refusing to license Diffie-Hellman to anybody (yes, they owned a patent on that, back before it expired in 1997). Today the Diffie-Hellman algorithm has been out of patent protection for 3 years, but almost nobody uses it, because of the need to remain compatible with the large installed base of software that was forced to use RSA.
Let's hope the current patent shenanigans that are holding back Mozilla crypto are the last adverse effects that the open source community will ever see from RSA Data Laboratories, Inc.
Exports? (Score:1)
Re:Mozilla at Last?--no themes (Score:2)
Re:Mozilla is *ugly*! (Score:1)
I'd actually volunteer myself for something like that, being that most my background is in the graphic arts and printing spaces rather than the C, C++, Perl, Java, TCL, Perl, etc... space.
Re:Why bother with Mozilla? (Score:1)
Can use https in Mozilla right now (Score:3)
This is a little misleading. The MozillaZine article tells you how you can set up Mozilla to browse secure sites right now. Today. I have done it and it appears to work fine.
Re:Don't get excited yet; wait until after 9/20/20 (Score:4)
This is vital (Score:4)
Much as I hate to admit it, Internet Explorer is the browser to beat, largely because of M$'s [illegal?] bundling of it with the OS and OS integration, the average home user wants to be able to click on an icon that's there when they get their PC - that's IE.
Mozilla is the only option for a compliant 'next-generation' browser. The browsers of the near future are going to have to be a one-stop-shop for net usage encompassing browsing with mail, news, instant messaging, chat, streaming media etc etc. This is possible with Mozilla. In addition, they have to be SECURE. When the traditional media report on the internet, and it's one of the rare occasions when it's not about porn, it's about shopping online, banking online, share dealing online. Security is a big BIG issue here.
People who say they shouldn't be including this in beta software have clearly missed the point of beta software. If it doesn't get beta tested, how the hell is it ever going to be made ready for release to the general public?
Go, download this version, test it, try it, even buy stuff with it, be as careful when doing so as you should be with any browser, but most of all, when you break it report it or fix it.
--
Mozilla is shaping up. (Score:1)
So Fix It! (Score:1)
In the spirit of open source, if you can do better, then fix the damn thing. If not, then wait until someone comes up with something better. If it's that bad, they will.
It's pretty lame to complain about something that is fully configurable by any user.
Dynamic reflow? (Score:1)
Some theme support - well scrollbars anyway (Score:2)
Chris Wareham
Re:Mozilla is *ugly*! (Score:1)
Re:This is vital (Score:3)
Browsers of the future SHOULD NoT try to encompass every task a user might want to do. Look at the current Netscape for instance... I actually like it the best of any of the browsers, but so far as it's email client goes, I'm much happier with Outlook Express... For it's Address book, again, i like outlook much more... For web page composition, Dreamweaver rules.
Mozilla should focus on shipping a kick ass browser only... Think Navigator, not Communicator. The simpler the client, the less likely bugs will surface, the easier it is for people to download, and the sooner it can hit the actual beta stage followed by 1.0.
There's so much progress that's been made on all the fronts... Instant messaging, Streaming Media, etc... They have huge head starts in infrastructure, usability and market saturation. There's no need to replace them And they're not broken... Don't fix them.
Just as everyone gripes with Microsoft bundling the kitchen sink with their OSes... I'd much prefer not to have to download an email client that i won't use, codecs for a streaming system that i won't use, instant messaging that i won't use, and page layout software i won't use just to get a browser which i might like to use.
Re:this is what you call progress? (Score:1)
I guess you haven't tried Mozilla say 6 months ago. Current M14 is like from another planet if you compare it with M8 or older. They look like a bit same as it does now, but frankly, they weren't for real use. Now Mozilla is.
And not to mention the time (About a year ago, if I remeber right) before Gecko and GTK+.
alpha/beta/release code (Score:3)
From: http://www.fsf.org/fun/jokes/softw are.terms.html [fsf.org]:
Alpha Test Version: Too buggy to be released to the paying public.
Beta Test Version: Still too buggy to be released.
Release Version: Alternate pronunciation of "Beta Test Version".
I understand Mozilla is soon-to-be-beta, and this might scare away people from it's encryption, but could a possible crypto-related Open Source security hole be worse than a closed source 'to-be-enhanced-feature'?
And talking about 'to-be-enhanced-features', have you seen the <IMG SRC="file:///c:\CON\NUL"> bug with IE/Win98? It makes the whole machine crash and burn. You can possibly also send this in html-email to outlook-users. Apparently (you might want to confirm this information), this was posted on BugTraq a year ago, but has recently been reposted because it was never fixed.
Shit happens.
RC4 128-bit for all... (Score:1)
Have the hacks contribute (Score:1)
Woohoo! (Score:1)
We're getting there people!
--
Re:Dynamic reflow? (Score:1)
Re:Readiness of Mozilla (Score:1)
it works! (Score:1)
Re:M14 + cyrypto (Score:3)
Considering that Potato is currently in a freeze, I would imagine not. Perhaps it will go into Woody...
Re:alpha/beta/release code (Score:1)
Re:Yeah that's a good idea (Score:1)
Re:Dynamic reflow? (Score:1)
You know, Lynx lets you *set* the amount of data recieved between rendering passes. Surely that wouldn't be too difficult to implement.
Now we have a choice. (Score:1)
Finally, I can now start using Mozilla and do my part as a user to make this browser the best it can be! While I wish the entire thing were open source, what I (and most other people) care about is simply having viable alternatives. Now we all have one.
Open Source certainly enables choice (look at Linux and all the variations of BSD), but it's not the only way to develop software. Believe me, I'm looking forward to the day RSA's patent expires. Then we'll have some real choices.
-- PhoneBoy
Re:Exports? (Score:1)
Re:Don't get excited yet; wait until after 9/20/20 (Score:1)
Bad Useragent Checking, and Upgrade your browser. (Score:4)
I've created a template form [singleclick.com] that you can fill out and then copy the results into your e-mail client to mail off to websites that aren't allowing you to log in because it thinks you should "Upgrade your browser".
Joseph Elwell.
Re:RC4 128-bit for all... (Score:1)
Re:Don't get excited yet; wait until after 9/20/20 (Score:1)
Very interesting. Can anyone confirm this? I can only seem to find that Public Key Partners, not RSADSI held the patent on Diffe-Hellman. Is there any connection between these two companies?
Re:So Fix It! (Score:1)
Re:Dynamic reflow? (Score:1)
Re:Dynamic reflow? (Score:1)
Re:Don't get excited yet; wait until after 9/20/20 (Score:1)
In fact, most of the "boilerplate" code you'd need is in the open NSS code released on mozilla.org -- but Mozilla/AOL/iPlanet can't do this, it'd have to be done outside the US.
So get cracking!
I Like It! (Score:1)
I'd help fix the bugs, if only they'd rewrite it in Perl...
Re:Yeah that's a good idea (Score:2)
I agree, 4 digit PIN's are useless. I know on one of my bank accounts my PIN is 12 digits (the maximum possible), but at my other 2 accounts 4 is the max! What is with these banks? Just because some people have trouble remembering more then a 4 digit PIN doesnt mean I do. Why, in this world of ever-increasing HD space is the maximum normally 4 digits? This astounds me.
Re:Yeah that's a good idea (Score:1)
But yeah, a lot of people are fooling themselves about this. I presonally don't even shop anywhere but online now anyway, except for large purchases. So much more convenient, don't have to waste any time in a store. I hate shopping.
Not So (Score:2)
Have you ever heard the truism
"The simplest answer is the best"
DSA/El Gamal is much more convoluted than RSA. RSA is simplicity and elegance in an algorithm. I trust RSA more because it is better understood, and since it is simpler, there are fewer attack vectors for a cryptanalyst.
Re:Mozilla is perverting itself with binary only s (Score:1)
The Mozilla Crypto FAQ [mozilla.org]. Read it. It explains how the developers will return to release this source and include it with Mozilla later, when the patents expire. Or maybe you'd rather they broke the patent and made the whole damn browser illegal?
Think before you post...
Re:This is vital (Score:1)
OE definitely has advantages- multiple POP accounts, for one, are something I've needed for a long while. Netscape's lack of support for such is simply unexcusable, IMO.
Overall, it would certainly be better to be able to download the various components of Mozilla. I use ICQ, but very rarely. I have no need for another IM agent. The fact that every Netscape release I d'load FORCE installs AIM, with NO uninstall option, really pisses me off- gotta delete the directory, then hunt down all the registry keys for it. Argh.
Why should I have to load a whole bunch of
Of course, Mozilla will never be as fast as IE- the advantages of being tied directly to the OS instead of having to move through another layer are unbeatable. Unless/til MS opens their API's entirely, this will not be overcome. I would really dig being able to decide what I want to use to browse my system on Windows install- Netscape or Explorer?
If Netscape can't do it all on a direct, API level, then don't TRY! Let me d'load and install the specific components I want to use- don't bunch everything together as 'program files', then give me lame optionals like RealPlayer and such.
I'm also not all that impressed with how Mozilla is shaping up- an earlier poster hit it dead on when he said a 'poor imitation of IE'. Password saving? Ugh. Nav bar on left side? What was wrong with bookmarks? I want innovation! But sadly, perhaps MS actually had a point- as IE certainly seemed to be more innovative than M* is turning out to be. That's a sad, sad development.
Re:This is vital (Score:1)
Would the 800-pound gorilla dare to stop them, given that their current business practices in the "muscling of vendors" realm are currently under inspection?
And what about AOL? Are they planning on making Mozilla their default browser, embedding it into AOL software much like IE is today embedded there? If so: instant market share!!
Re:Readiness of Mozilla (Score:1)
Mozilla is MPL not compatible with GPL (Score:1)
Re:Mozilla is perverting itself with binary only s (Score:1)
There is no binary-only code hosted on mozilla.org as part of the Mozilla project. The Netscape Personal Security Manager binaries (which provide SSL support for Mozilla) have been provided by iPlanet, because they have the license from RSA to include the necessary code and algorithms to build a complete binary executable ready for use (in this case under the "Netscape" brand).
All of the other code in PSM is or will be available in source form on the mozilla.org site [mozilla.org]. People who want to use that source code to build their own PSM binaries will be able to do so, as long as they have separate source code to implement the RSA-licensed parts.
For reference, there are three sets of relevant source code needed to provide SSL support for Mozilla:
As always, for more information see the Mozilla Crypto FAQ [mozilla.org].
Doesn't do E*Trade... (Score:1)
Until I can log into E*Trade [etrade.com], I can't move over to Mozilla. And M14-crypto doesn't do E*Trade (for me).
The only other thing keeping me from making the switch is the lack of support for mail filters. I get too much email to have it all swamp my Inbox
Re:Why bother with Mozilla? (Score:1)
I suppose you could check out W3 [w3.org] for more info on CSS 1, 2 and (sigh) 3. (I really would rather if people got serious about standardising "standards" these days).
Mozilla M14 supports CSS rather well as far as I can see, which is already a big improvement on Netscape 4.x
Re:still pointless (Score:1)
I think Sun may distribute the binaries instead of mozilla.org though for some reason.
Irix, I don't know, you could look on netscape.public.mozilla.builds on news.mozilla.org (NNTP) and you might find out...
Re:This is vital (Score:1)
there, that was easy, wasn't it?
Re:Mozilla is already included in debian (Score:2)
Potato (web subsection) alread includes mozilla m-13.
Re:Mozilla is MPL not compatible with GPL (Score:1)
Also, the Mozilla SSL implementation (in the Personal Security Manager and Network Services Services library) was released under both the MPL and GPL. This was done specifically to allow this code to be used in GPLed software. See the Mozilla Crypto FAQ [mozilla.org].
Re:Why bother with Mozilla? (Score:1)
No, I'd much rather it came from the hands of Bill Gauyetes.
Internet Explorer has been proven to be far more standards compliant than any of the so-called browsers that run on Linux.
Of course it's easy to make a "standards-compliant" browser when you can make your own standards and then force everyone to accept it.
Ever heard the joke? How many microsoft programmers does it take to change a lightbulb? None, they declare darkness to be a new standard.
Mozilla taking strides (Score:1)
Mike Roberto
- roberto@apk.net
-- AOL IM: MicroBerto
Re:This is vital (Score:1)
Funny, IE for the Mac is a
I build a new Mozilla out of CVS every couple of days on my Linux box at work, and it's getting very much better than it used to be. Soon it will surpass the (wretchedly bad) Navigator 4.x in functionality, and I can switch over for my daily work. The Mozilla team is to be commended for producing a workable, complex piece of software.
That said, it's still unusable for me -- I can't abide by the software crashing every 10 minutes or so. And it sadly looks like the Mozilla team is shooting at doing nothing better than replacing the state of the art from two years ago.
Why is are precious tuits being spent on replicating the worst parts of the comically inept Communicator? Why is there a mail/news client? Why is there a html editor? Neither of those two components address the true problem with the Free Software universe (at least as regards to web parity with the non-Free platforms): web browsing.
In addition, it'd be nice to see the adaptability of iCab [www.icab.de], in particular, the excellent support for cookie management and content filtering. A free browser that did NOTHING BUT BROWSE would be huge huge winnage.
Just my
(jfb)
Re:Internet=Death? (Score:3)
Mostaphalles dun said:
Well, I don't remember the article in question, but I can note on some stuff (mostly from having been on the net that long)...
As far as I know, only one nation has ever had the death penalty for using the net, and that is Taliban-controlled areas of Afghanistan. (The Taliban-controlled areas have severe restrictions and/or outright bans on very nearly all media, including most print media, TV, movies, and even music--they outright make the Bad Old Days of sharia law in Iran look downright liberal in comparison.)
Some countries in central Africa may well have had severe restrictions (including imprisonment, though I doubt the death penalty) for unapproved connections, and most of the Islamic countries have always had severe restrictions on Internet connections (usually requiring proxies, etc.)... don't remember seeing anything on death penalties, though.
Myanmar may have had such a restriction; reportedly, modems are illegal unless specifically licensed by the government there, and an unlicensed modem can land one in prison for a good long time.
Notably--most of thesee countries that would have problems with it don't make the net illegal as much as they'd make all "unathorised" or "unlicensed" publishers illegal--it's far more likely they'd get you for "publishing subversive publications" or the like.
I can state with some certainty that Singapore wasn't one of the places that had the death penalty for using the net, though (I remember *.sg addys from 1992-1993), and the government finally started restrictions around 1996 or so (basically national firewall).
As an aside: Most countries that are going to be so repressive as to literally mandate the death penalty for unlicensed connections to the net have very poor or no Internet connectability whatsoever. Many countries in central Africa pretty much only have UUCP connections to the rest of the world (mostly through stuff like Doctors Without Borders, and occasionally university connections), and an increasing number of those are actually getting full Internet at least for universities. Iran (Yes, Iran) even has full Internet, and even one or two ISPs operating there...
About the only countries I know of with no Internet connections are Iraq, Libya, North Korea, and Afghanistan...Iraq is basically being shunned by the rest of the world and had most of its infrastructure bombed back into the stone age, and most of the folks there have more serious worries (like food and meds and shelter); Libya was likewise shunned due to UN sanctions (its domain is being operated as a vanity domain out of the UK) but this may change now that most UN sactions are being dropped; North Korea both is shunned and pretty much has walled itself off from the rest of the world (about the only country MORE isolated is Afghanistan), its people have more important things to worry about (like food) and the leaders are xenophobic enough to pretty much avoid anything like the net like the black plague; Afghanistan, well, it has the Taliban (fun with psychofundy Sunni Moslems that make the hardline mullahs in Iran seem downright grandfatherly) and I mentioned some of the fun stuff they ban earlier...as for the rest of Afghanistan, just about everything above a molehill was blown to smithereens long ago, they have more important stuff to worry about (like food, shelter, not having the entire country taken over by the Taliban, etc.). Short of a miracle, none of these folks are going to be getting Internet access anytime soon. :P
Re:Bad Useragent Checking, and Upgrade your browse (Score:1)
Wells Fargo won't even let me in with Netscape 4.72 for Windows. Last week they told me March 9th for the testing to be complete, but I'm still being redirected to the "denied" page. They're saying 1700 pst (-0800), now.
At least in the case of Wells Fargo, they seem to actually do some testing of browsers. I can see that a browser could have secure crypto and defeat the crypto entirely by doing something else stupid. So for banking, useragent checking is appropriate. Imagine the liability if they approve a browser that leaves passwords in its cache...
Re:This is vital (Score:2)
Painful as it is for non-M$oft fans to admit (and yes, it stabs me too
Perhaps this is a good thing, perhaps bad - but it gives the Mozilla team a hard target to reach.
--
Mozilla gui sucks, par for linux (Score:4)
Why does mozilla break all the user interface rules (like middle button scrolling)? This pisses me off because they must have spent a bundle of time reimplementing the entire keyboard/mouse logic (incorrectly). Don't fix [break] it if it isn't broken.
For an OS that started on text terminals, linux sure jacked up it's keyboard handling. Back in my windows days I didn't use the mouse (ever, 'cept browsing). With linux I have to use it all the time. I suppose it's really the windows manager / x server / apps fault but it makes the whole system suck.
If you disagree you can post you reasons. If you have no reasons moderate me down instead.
Ryan
Potato now has M14 (Score:1)
Posted using M14 on Debian
Re:Readiness of Mozilla (Score:1)
I much prefer the interface to Netscape (Score:2)
As for the interface in general, I also like that better than Netscape (I'll not mention IE, which is truly hideous).
Re:Yeah that's a good idea (Score:1)
Unfortunately this is not the case. Check out the mozilla newsgroups (especially wishlist) and see all of the "foo.com doesn't work in mozilla. This browser sux, IE is so much better" messages.
---
Zardoz has spoken!
A few things that annoy me about Mozilla (Score:2)
2. Almost as annoying is the fact that the middle button is no longer set to "Open link in new window". Again, that's one of the things I like about Netscape under Linux.
3. I want to be able to define my own shortcut keys, because I will almost certainly never agree with the ones anyone else chooses.
Youre missing the point (Score:1)
- Save the passwords? Oh how convenient...
I refuse to call something intended for broad public use secure, until it's secure by default.
Whats the use in having a burglar alarm if you dont tell anyone how to turn it on?
Also, it still has to be reversably-encrypted, the passwords have to be sent plaintext. All someone really has to do is to get someone's password file, and run it through a password cracker with a huge list of words, and he'll break it if the user isn't exremely security-minded.
Re:Don't get excited yet; wait until after 9/20/20 (Score:1)
Re:Bad Useragent Checking, and Upgrade your browse (Score:2)
Re:So Fix It! (Score:1)
Besides, I don't think the UI is that bad. It's all a matter of taste, really, and that's where themes come in.
Here's my [radiks.net] DeCSS mirror. Where's yours?
Re:Readiness of Mozilla (Score:1)
Here's my [radiks.net] DeCSS mirror. Where's yours?
Re:Some theme support - well scrollbars anyway (Score:1)
Re:Mozilla's really coming along nicely (Score:1)
Here's my [radiks.net] DeCSS mirror. Where's yours?
yea, mozilla is great (Score:1)
Sweet piece of k0d3.
Re:A few things that annoy me about Mozilla (Score:1)
2. Bug #6085. there is a patch attached, hopefully it gets checked in before beta
3. You can (if so inclined) edit the XUL. But yes, there needs to be a pref dialog for this.
M14 + cyrypto (Score:1)
I think you mean released distro instead.
About Mozilla & Crypto (Score:1)
--
Re:Don't get excited yet; wait until after 9/20/20 (Score:2)
If it doesn't use RSA, it doesn't matter where it was developed, the user doesn't need a license from RSA.
The whole 'outside the US' thing was the traditional response to export controls, not to the use of RSA. US-residing RSA users legally need to use either a licensed version of the RSA algorithm, or use the old RSAREF library that was released to the public (and is horribly slow and buggy).
--
I dont get it.. (Score:1)
What am I missing? Is Mozilla really the 'killer app' everyone's been waiting for, or is everyone just so hopeful that they are blind to the fact that its a steaming pile on the carpet???
The Mozilla logo (Score:1)
Re:Why bother with Mozilla? (Score:1)
Re:This is vital (Score:1)
I think Internet Explorer is the browser to beat not only because almost all new pc's ship with it, but because it is the easiest to write attractive pages for. Just compare how much richer the Document Object Model is for IE than Netscape (haven't tested any DHTML in Mozilla yet). I've read the W3C specs, I've tore through the o'reilly books on web programming languages galore, and I've written and seen enough pages work brilliantly (and this is just javascript and css, nothing insecure) in IE that crash and burn in NS not because of bad code but because IE is just plain better at rendering the source it's given.
That's what I WANT mozilla to be... the browser that I can write webpages for that are fun to look at (ie, use current authoring technology) but provide good content in Linux.
B1ood
Mozilla... (Score:1)
rbf aka pulsar
Drop down url bar. (Score:1)
Re:This is vital (Score:1)
It would be nice to have something a little less prone to macro viruses than Outlook and perhaps even something that uses less memory.
It might even be nice to have a quick-and-dirty web-page editor which was standars compliant - it might take a couple of windows users away from Outlook Express!
Re:Mozilla gui sucks, par for linux (Score:1)
Mozilla was started from a brand new codebase - they didn't fix/break netscape, they just threw it away and started again. If you don't like it, you know where you can stick it - mozilla.org, where you can place requests, bugs and even bug fixes. Alternatively you could just keep it to yourself and moan on and on.
Re:The Mozilla logo (Score:1)
Wrong place for parent (Score:1)
Human error or mangled database?
--
El Gamal is simpler (Score:1)
Diffie-Hellman is extremely simple and was discovered a good deal earlier than RSA. El Gamal is a totally obvious extension of Diffie-Hellman, in which the Diffie-Hellman key exchange protocol is made into a public key cryptosystem in the simplest way possible: replace the predetermined secret exponent with an on-demand random one!
The only reason it took seven years to develop El Gamal's algorithm is that the scientific culture at the time was predominantly convinced that algorithms (even cryptographic ones) had to be deterministic. If you had tipped off any researcher in the field about run-time randomization of Diffie-Hellman, they could have produced El Gamal's 1984 paper off the top of their head. RSA is deterministic, requiring no random numbers at run time. Ironically, nowadays all RSA implementations introduce randomization in some form because it is obvious that a purely deterministic algorithm is not secure: Would you trust an encryption algorithm where the messages "Yes" and "No" always encrypt to the same two output messages?
As for your implication that RSA is more trustworthy than El Gamal, you might want to read Question 2.14 [clara.net] of the PGP DH vs. RSA FAQ, where various well-known experts assert that (as far as we know) all known ideas for solving the discrete log problem have direct applicability to factoring, whereas the reverse is not true. We know that factoring does not allow you to take discrete logs, whereas on the flip side there is strong evidence that if you can take discrete logs you can factor. All this and more is explained in the FAQ; the upshot is that most mathematicians, if forced to pick one of the two, would say that the factorization problem is likely to succumb before the discrete log problem succumbs. Of course the underlying hard problem is not the whole story, since neither RSA nor El-Gamal have been proven equivalent to the underlying hard problems, but it's the best we can do so far considering that no one has demonstrated any way to break the algorithms except through the underlying hard problems.
Finally, the very simplicity of using the same key for both encryption and signing is also a liability, in that if both keys are the same then anyone who is able to get one key (for example by a court order) is then able to forge the other operation as well. In the current political climate, I'd certainly like my signature key to remain valid even if the government seizes my encryption key.
Re:Doesn't do E*Trade... (Score:1)
As for mail filtering, I'm not sure exactly what the status is on that, although there are a few bug specifically relating to mail filtering: here [mozilla.org], here [mozilla.org] and here [mozilla.org].
Re:Mozilla gui sucks, par for linux (Score:2)
Ryan