Ryan Sleevi schrieb:
I fear that others using the store for S/MIME or code-signing would think
the same as you. The reality is that this is not the case, which is why
it's all the more reason to make an informed decision.
As it stands, you could do each of those things I explicitly mentioned and
still pass a "WebTrust for CAs" audit with flying colours,
Ryan,
sorry, I don't understand you. You cannot pass an Webtrust for CAs audit
when you do the things you mentioned. There is no difference between
email/codesigning certs and TLS server certs.
Regards,
Juergen
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
