On Mon, Jan 18, 2016 at 10:45 PM, Reed Loden <[email protected]> wrote:
> https://cabforum.org/pipermail/public/2016-January/006519.html has > more information on these certs. > I don't think that includes the Digicert one, though? > > ~reed > > On Mon, Jan 18, 2016 at 10:23 PM, Kurt Roeckx <[email protected]> wrote: > > On Tue, Jan 19, 2016 at 01:49:21AM +0000, Charles Reiss wrote: > >> Via censys.io, I found a couple SHA-1 certs with notBefore dates from > this year > >> which chain to root CAs in Mozilla's program: > > > > I also have some from C=US,O=VeriSign\, Inc.,OU=VeriSign Trust > > Network,OU=Terms of use at https://www.verisign.com/rpa > > (c)10,CN=VeriSign Class 3 International Server CA - G3". I'm not > > sure that CA is still included, but I think it it. > > > > It includes certificates like C=US,ST=California,L=Mountain > > View,O=Symantec Corp.,CN=psslnoov.symantec.com > > > > I didn't have time to file bugs for this yet. > > > > > > Kurt > > > > _______________________________________________ > > dev-security-policy mailing list > > [email protected] > > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy > -- konklone.com | @konklone <https://twitter.com/konklone> _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
