Bonjour, Le lundi 12 septembre 2016 14:30:56 UTC+2, Peter Kurrasch a écrit : > I noticed there a several other domains listed on that cert besides Han's > (and wildcard versions for each). Unless Han is the registrar or has some > other affiliation with those domains it seems to me there is a risk of some > private key compromise situation.
How is the risk of key compromise higher because there are several domain names in the certificate? > Also, if I want to add a new domain to a cert that has several other domains > already on it, will I need to demonstrate control over all of the domains or > only the new one? For a DV, if you demonstrated control less than 39 months ago, the CA MAY keep the result and issue the certificate for the previously verified domains. Again, this is in the Baseline Requirements, not in this particular CA's CPS. _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
