Hi Rob, On 23/09/16 16:18, Rob Stradling wrote: > BTW, I also found certs containing the following public suffixes (i.e., > PSL+0), some of which may be of interest:
Are these in the PUBLIC or PRIVATE section of the PSL? CAs are, with appropriate caution, not constrained from issuing certificates for PSL entries in the PRIVATE section. (E.g. Google may want to provide SSL to all appspot apps with a *.appspot.com certificate.) Gerv _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy