> On Aug 15, 2017, at 18:21, Kathleen Wilson via dev-security-policy > <[email protected]> wrote: > > Feedback will be appreciated on the following draft for the Bugzilla Bugs > that I will be filing for the problems listed below.
I think we should ask for the CAs to provide a complete list of certificates that they find with each of the listed issues during the remediation process. The best way to handle this is to ensure each certificate is logged to CT and then provide a CSV file/spreadsheet of the fingerprints or crt.sh IDs, with one list per distinct problem. Jonathan _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
