May I ask why a university didn't just obtain another SSL certificate?
I mean you can obtain SSL certificates (RapidSSL is ~$20) cheap now.
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
On Wednesday 16 July 2008 15:08:15 Frank Hecker wrote:
...
We are doing what we can. However by design we do not simply
rubber-stamp CA requests. We have an official policy which was
developed through a process of community consultation, and we follow a
similar process of community discussion
Rob Stradling:
On Wednesday 16 July 2008 15:08:15 Frank Hecker wrote:
...
We are doing what we can. However by design we do not simply
rubber-stamp CA requests. We have an official policy which was
developed through a process of community consultation, and we follow a
similar process of
Nelson,
Thanks for the info, I tried to list out the tags from the repository
which didn't go so well so I just grabbed the HEAD for everything and it
ended up working just fine for me, both on the command line and for
Dogtag. The Dogtag devs and I have updated the wiki to remove the
Thorsten Becker wrote:
[...]
I'm currently seeing more and more Firefox users migrating to version
3.0. [...] Firefox is
quite harsh about unknown certificates.
The reactions of the users are either of:
[...]
-switching the browser
the latter more likely than the former. Consequently we
I have specific question to a preferred setup of a EV SSL server PKI and how
the user experience will be.
The setup is the following:
Assume that a EV compliant
primary root cert of CA X is accepted and preinstalled in Firefox 3.x (FF3).
The hierarchi is now
CA X PCA root
|
+- CA X SSL
Rob Stradling wrote:
Frank, is there any reason why you can't have multiple candidate CAs having
their public discussion periods simultaneously?
No reason at all; in fact, technically we have two in public discussion
right now (GlobalSign and T-Systems). The major bottleneck is collecting
[EMAIL PROTECTED] wrote:
I have specific question to a preferred setup of a EV SSL server PKI and
how the user experience will be.
Im not the expert on this, but I can perhaps give you a preliminary
answer until the experts show up.
Assume that a EV compliant primary root cert of CA X is
On Thursday 17 July 2008 13:33:04 Frank Hecker wrote:
Rob Stradling wrote:
Frank, is there any reason why you can't have multiple candidate CAs
having their public discussion periods simultaneously?
No reason at all;
Thanks Frank. That's good to hear.
in fact, technically we have two in
Rob Stradling wrote:
Frank, in Bug #421946 Comment #15 you said:
I'll proceed with the first public comment period once I figure out where
this request sits in the queue relative to other similar requests.
If the public comment/discussion periods are not the major bottleneck, then
can you
On Thursday 17 July 2008 16:50:50 Frank Hecker wrote:
Rob Stradling wrote:
Frank, in Bug #421946 Comment #15 you said:
I'll proceed with the first public comment period once I figure out
where this request sits in the queue relative to other similar requests.
If the public
Frank Hecker:
P.S. Incidentally, I have no problem whatsoever with CAs pinging me
directly (via email or phone or whatever) to remind me that their
requests need attention. Please feel free to do that if ever you should
need to.
Frank, I think you mentioned in the past the ECC requests are
Frank Hecker:
Eddy Nigg wrote:
Frank Hecker:
P.S. Incidentally, I have no problem whatsoever with CAs pinging me
directly (via email or phone or whatever) to remind me that their
requests need attention. Please feel free to do that if ever you should
need to.
Frank, I think you mentioned
I am now opening the first public discussion period for a request from
Wells Fargo to add the WellsSecure Public Root Certificate Authority
root certificate to Mozilla and enable it for EV use. This is bug
428390, and Kathleen has produced an information document attached to
the bug.
David Stutzman wrote:
Nelson,
Thanks for the info, I tried to list out the tags from the repository
which didn't go so well so I just grabbed the HEAD for everything and it
ended up working just fine for me, both on the command line and for
Dogtag. The Dogtag devs and I have updated the
Has anyone validated the ECC paramters they used?
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
On Thu, Jul 17, 2008 at 3:39 AM, David Stutzman [EMAIL PROTECTED] wrote:
Nelson,
Thanks for the info, I tried to list out the tags from the repository
which didn't go so well so I just grabbed the HEAD for everything and it
ended up working just fine for me, both on the command line and for
17 matches
Mail list logo
