In what way would this be a policy violation? Most CAs trusted by Mozilla issue wildcard certificates.
Perhaps you were thinking of EV certificates? For EV, wildcard is indeed not permitted, but Let's Encrypt does not issue EV at all. On 29/08/2017 04:31, David E. Ross via dev-security-policy wrote: > I just read mention that Let's Encrypt will be enabling wildcard > domains, possibly by the end of this year. Is this not a violation of > Mozilla policy? > > I saw this in the eternal-september.support newsgroup, which is > available only via the news.eternal-september.org NNTP server. The > thread subject was "Expired Server Certificate". > _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
