Correct. Sorry, I meant to say "on the Symantec-issued certs". ~reed
On Mon, Jan 18, 2016 at 10:55 PM, Eric Mill <[email protected]> wrote: > On Mon, Jan 18, 2016 at 10:45 PM, Reed Loden <[email protected]> wrote: >> >> https://cabforum.org/pipermail/public/2016-January/006519.html has >> more information on these certs. > > > I don't think that includes the Digicert one, though? > >> >> >> ~reed >> >> On Mon, Jan 18, 2016 at 10:23 PM, Kurt Roeckx <[email protected]> wrote: >> > On Tue, Jan 19, 2016 at 01:49:21AM +0000, Charles Reiss wrote: >> >> Via censys.io, I found a couple SHA-1 certs with notBefore dates from >> >> this year >> >> which chain to root CAs in Mozilla's program: >> > >> > I also have some from C=US,O=VeriSign\, Inc.,OU=VeriSign Trust >> > Network,OU=Terms of use at https://www.verisign.com/rpa >> > (c)10,CN=VeriSign Class 3 International Server CA - G3". I'm not >> > sure that CA is still included, but I think it it. >> > >> > It includes certificates like C=US,ST=California,L=Mountain >> > View,O=Symantec Corp.,CN=psslnoov.symantec.com >> > >> > I didn't have time to file bugs for this yet. >> > >> > >> > Kurt >> > >> > _______________________________________________ >> > dev-security-policy mailing list >> > [email protected] >> > https://lists.mozilla.org/listinfo/dev-security-policy >> _______________________________________________ >> dev-security-policy mailing list >> [email protected] >> https://lists.mozilla.org/listinfo/dev-security-policy > > > > > -- > konklone.com | @konklone _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
