On 24/02/16 16:03, Eric Mill wrote: > Clearly, Mozilla is making a value judgment that this SHA-1 exception is > more merited than other public and private requests for exceptions. It > doesn't sound like Mozilla is potentially supporting this exception based > on a calculation of economic impact, but rather an assessment of its > potential to affect human consumers and business owners. > > In either case, I'm not suggesting devaluing rich people - I'm saying that > large businesses have a greater capacity to absorb disruption and ephemeral > economic loss than small businesses and sole proprietors, and that's what > Mozilla should take into account.
Regardless, we are unlikely to be able to get an analysis of the nature of the customers affected before we have to make a decision. Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
