On 02/04/15 19:33, Daniel Micay wrote: > Is there really a way we could notice this? Other than a leak from an > employee at CNNIC...
To be used, certs generally have to be public. Which means people can find them. And compare them to lists. We may end up coding the whitelist into Firefox, we may not. But AIUI, Google are going to. Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
