> Are you saying out of over 40,000 orders over the last year, only six > "stopped to move forward" for a period of a week or more and these happen to > all have been ordered on Sunday, December 20, 2015 (China time)?
You mean we issued 40,000 certificates at Dec 20, 2015? Here is the last two weeks in 2015 issued SSL certificates statistics that I send it to Gerv: WEEK FRI SAT SUN MON TUE WED THU FRI SAT SUN MON TUE WED THU Dec. 2015 18 19 20 21 22 23 24 25 26 27 28 29 30 31 Issued No 419 321 278 348 746 463 407 424 294 257 424 380 506 344 SHA-1 Cert 39 24 46 18 43 29 31 25 3 0 29 31 37 13 SHA-2 Cert 380 297 232 330 703 434 376 399 291 257 395 349 469 331 We issued SHA-1 certificate at every day, Dec 20 is not a special day, why you care about this day is Computest get the SHA-1 certificate used this date that we still don't know how he get this, so we closed this API completely, even deleted the API domain resolution. Best Regards, Richard >Thanks, <Peter On Wed, Sep 21, 2016 at 7:26 AM, Richard Wang <rich...@wosign.com> wrote: > Hi Gerv, > > See below inline, thanks. > > Regards, > > Richard > > -----Original Message----- > From: dev-security-policy > [mailto:dev-security-policy-bounces+richard=wosign.com@lists.mozilla.o > rg] On Behalf Of Gervase Markham > Sent: Wednesday, September 21, 2016 9:19 PM > To: mozilla-dev-security-pol...@lists.mozilla.org > Subject: Re: Incidents involving the CA WoSign > > Hi Richard, > > Thanks for the additional information. > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy