Am Dienstag, 22. November 2016 21:37:08 UTC+1 schrieb Lewis Resmond: > Hello, > > I just noticed following announcement by WoSign: > > https://www.wosign.com/english/News/certificate_pre.htm > > If I understand correctly, they now have new root certificates which chain up > to Certum, which is in the root storage. > > What does that mean in particular? Are the previously taken sanctions now > useless?
According to this comment [1] I think yes. But this means also that the new ca is now the target. You can find the cert mentioned there here [2] and the intermediate here [3] which is not in the CT logs... [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1309707#c11 [2] https://crt.sh/?id=53689359 [3] https://censys.io/certificates/c0ab07d9071a4cc1d34409178f8bca058310a8b111ddcfa655658760226f50f9 _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
