|
|
|
|
|
|
by biggerfisch
2717 days ago
|
|
|
That is a risk, but not an uncommon one. There are a dozen other workflows that rely on users installing CAs, maybe not quite w/o root, but all the same, installed, so this isn't a new idea. Also, it seems to me that virtually any way to get those keys involve hostile code running on your machine, meaning you're already toast. I do also wish it didn't install certs as non-root, but as pointed out in another comment, there is a workaround for that. |
|
|