Matt Palmer <mpal...@hezmatt.org> writes: >On Thu, Mar 19, 2015 at 01:01:32PM -0700, Peter Bowen wrote: >> In the Pilot CT log, which includes every certificate that the Google >> crawler has seen, I found 19 unexpired certificates issued by this CA. >> Their subjects are as follows (using the default OpenSSL DN to string >> method): >> >> Subject: C=AU, ST=Some-State, O=Tejarat Bank, CN=*.tejaratbank.net > >What is that... I don't even...
They're using the OpenSSL dummy-cert template to issue their certs (or accepting requests from the dummy-cert template and signing them into certs without checking them). Wow. Peter. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
