Hi all A few weeks ago, I got some mails about a broken iframe. The secure connection to the remote server failed (OCSP error). The site was signed by Swiss Government SSL CA 01. I contacted the technical support and they told me, that the Federal Office of Information Technology, Systems and Telecommunication (FOITT) of Switzerland shut down their OCSP servers! So all secure Swiss gov sites are broken if you requires OCSP. I contacted them directly and tried to explain why the OCSP service is a requirement for a CA, but they do not react.
Maybe someone of the Mozilla security team could contact them again. Regards, Jonas
signature.asc
Description: OpenPGP digital signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
