On 04/05/16 22:42, Richard Barnes wrote:
On Wed, May 4, 2016 at 5:41 PM, Dimitris Zacharopoulos wrote:
<snip>
https://wiki.mozilla.org/CA:SalesforceCommunity#Which_intermediate_certificate_data_should_CAs_add_to_Salesforce.3F
The above link clarifies that
* CAs should *not* add records for:
o Expired intermediate certificates
It seems a bit conflicting but it is more recent and very specific
to salesforce.
Thanks for pointing that out.
This is perhaps something we should clarify in the policy.
Good idea.
https://crt.sh/mozilla-disclosures now groups expired intermediate certs
with untrusted intermediate certs. Colours added too.
--Richard
Dimitris.
--Richard
e.g.
https://crt.sh/?sha1=c1b471f0fd9220f4d77f128b423fc5c9e688476e
expired some years ago as far as I can see but is currently on
the "should disclose" list.
* With lots of similar, long tables on a page it can be
hard to
be sure what you're looking at after scrolling or searching.
Setting a different pastel CSS background for each of the
tables, and using the same colours in the summary table at the
top could signal which table you're looking at without being a
lot of work to implement. Fancier solutions exist of course.
I'll tweak the colours.
(Fancier solutions are probably out of reach given my meagre
webdev
skills ;-) ).
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
[email protected]
<mailto:[email protected]>
https://lists.mozilla.org/listinfo/dev-security-policy
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909
www.comodo.com
COMODO CA Limited, Registered in England No. 04058690
Registered Office:
3rd Floor, 26 Office Village, Exchange Quay,
Trafford Road, Salford, Manchester M5 3EQ
This e-mail and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they are
addressed. If you have received this email in error please notify the
sender by replying to the e-mail containing this attachment. Replies to
this email may be monitored by COMODO for operational or business
reasons. Whilst every endeavour is taken to ensure that e-mails are free
from viruses, no liability can be accepted and the recipient is
requested to use their own virus checking software.
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
