On Thursday, November 5, 2015 at 3:27:45 PM UTC-5, Kathleen Wilson wrote: > On 11/5/15 11:34 AM, [email protected] wrote: > > It seems that we are going to untrust SHA-1 generally on July 1, 2016 > > [1]. Do we already have a bug number for this? > > > https://bugzilla.mozilla.org/show_bug.cgi?id=942515 > > > > > I think certificates with 'notAfter >= 2017-7-1' should get a triangle > > instead of the lock icon from now. > > > > > https://bugzilla.mozilla.org/show_bug.cgi?id=1183718
If you're going to be phasing out SHA1, can Mozilla support SHA256 and GCM for DHE? https://bugzilla.mozilla.org/show_bug.cgi?id=1084554 _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
