On Thu, May 19, 2016 at 05:20:07PM +1000, Matt Palmer wrote: > On Tue, May 17, 2016 at 11:14:21PM +0200, Richard Z wrote: > > There are crime friendly providers already and having crime friendly CAs is > > something that users would definitely notice. > > Why? Do users typically notice the crime friendly hosting providers?
they do. You can argue that in absence of crime friendly providers the criminals have other methods but having rogue providers certainly makes their business easier. There should be some reasonable middle ground. CAs can not be responsible for the contents served by their clients servers. However, CAs also must not knowingly or by gross negligence support malicious operations. Richard -- Name and OpenPGP keys available from pgp key servers _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
