On 21/05/17 19:37, userwithuid wrote: > With the new proposal, the "minimal disruption" solution for Firefox > will require keeping the legacy stuff around for another 3.5-4 years > and better solutions will now be a lot harder to sell without the > leverage provided by Google.
Why so? In eight months' time, if Chrome is no longer trusting certs issued before 2016-06-01, why would it be a problem for Firefox to stop trusting them shortly thereafter? Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
