On 23/03/15 22:49, Jeremy Rowley wrote: > Although CT would not have prevented issuance, requiring CT for all > certificates would have detected the misissuance much sooner.
I'm not sure that's true. The intermediate itself would not count as a misissuance. The Google cert the firewall created would, but Google found out about that and notified us very quickly. Mozilla's position on CT remains the same: "watching with interest" :-) Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
