On 03/04/15 01:46, Matt Palmer wrote: > On the other hand, CNNIC's blog post suggests that they haven't. There's > some serious cognitive dissonance going on here.
Just to close this loop: CNNIC have now supplied us with a ZIP file of all their currently-valid issued certificates. Given that Google are using CT as their mechanism for collecting CNNIC's list of issued certs, and that we stated we would be publishing the list we got, I am assuming that they are OK with us simply publishing that ZIP file as-is, but I will confirm. Gerv _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy