On 27/04/17 11:56, Inigo Barreira wrote:
Good to know that our new certs are there :-) Regarding StartCom, these are the new certs we´ve generated and will be used to apply for inclusion in the Mozilla root program. Nothing to disclose at the moment I guess. We´ve not been audited yet nor applied.
<snip>
Hi Iñigo. The old StartCom roots still have the SSL trust bit enabled in NSS, and you've used one of those old roots to cross-sign the new StartCom roots. AFAICT, that means that these new StartCom intermediates do need to be disclosed to the CCADB.
-- Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy