On Wed, Nov 02, 2016 at 03:44:16PM +0100, Jakob Bohm wrote: > What is the expected behaviour of a CA when they become aware that > someone is using illicit/dubious methods to pass an otherwise correct > application of BR and CPS mandated checks?
The "fraud or misuse" reason for revocation would be triggered, I suspect. However, I don't believe that an illicit or dubious method for domain control validation was used in this case, so it doesn't apply. - Matt _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
