On 24/03/15 13:18, [email protected] wrote: > As it is shown that, CNNIC doesn't have any proper audit policy for > issuing external subCA, and it is the first time they do so, can we > at least untrust any external subCA issued by CNNIC before their > updating policy gets reviewed?
You mean we should make a change to Firefox to do this? How would you define "external", when writing the code? Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
