On 2015-05-19 12:04, Gervase Markham wrote:
On 18/05/15 17:39, Kurt Roeckx wrote:
On the other hand, if it covers the whole country, they can abuse
it for domains in that country, but not for other domains. I'm
not sure why you would find it acceptable that they can abuse it
in their own country.
Some countries, AIUI, do not have an equivalent of gov.uk or go.jp. What
would you do in those cases?
Please note that I didn't argue for either adding them or not adding
them, but that to me adding them only makes sense when you can do it
specific enough.
Maybe that means that if the result of this discussion is that they
should be constrained, that they somehow must have an equivalent of
..gov, .gov.uk, and .go.jp.
Please note such a domain should not necessary have some special meaning
in DNS, and it could just be something like "government.TLD" in which
they might have subdomains or not.
Also having something as .gov.uk doesn't mean that all websites in
..gov.uk need to use the UK root CA.
Kurt
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
