Status: Started Owner: [email protected] CC: [email protected], lcamtuf Labels: Type-Bug Pri-2 OS-All Area-BrowserBackend
New issue 24038 by [email protected]: Add a certificate blacklist http://code.google.com/p/chromium/issues/detail?id=24038 We should add a certificate blacklist and X509Certificate::Verify should treat any blacklisted certificate as invalid. The blacklist is useful before those certificates are revoked or before system crypto libraries are patched to disallow those certificates. Initially the blacklist will contain the certificate published in http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70363 Note: Chromium's SSL interstitial page for the "certificate invalid" error does not have a "Proceed anyway" button. We don't want to let users click through to sites that use blacklisted certificates. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
