On Wednesday, 28 September 2016 18:33:07 UTC+1, Percy wrote: > I'm assuming WoSign/StartCom pressured Tyro to remove the blog post. > WoSign/StartCom has previously publicly threatened legal actions over the > secret purchase.
I would say it's just as likely that Tyro's executives decided that the blog post doesn't match up with the current story they want to start telling. Tomorrow's CA/B agenda, the new Symantec-issued wildcard for Tyro, and other factors suggest that Tyro now intends to pursue the SHA-1 exception process. On the whole there's no overwhelming reason they shouldn't be able to qualify for that process, but it may be a lot easier if they can manage to come up with one coherent story for how they got here which avoids contradicting the known facts or their own previous assertions, such as those in the blog post. _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
