On Monday, 16 October 2017 18:32:54 UTC+1, Gervase Markham wrote: > = Symantec roots to be disabled via code, *not* removed from NSS = > > GeoTrust Global CA > GeoTrust Primary Certification Authority - G2 > GeoTrust Primary Certification Authority - G3 > > = Symantec roots that will be fully removed from NSS = > > GeoTrust Primary Certification Authority > GeoTrust Universal CA > GeoTrust Universal CA 2 > Symantec Class 1 Public Primary Certification Authority - G4 > Symantec Class 1 Public Primary Certification Authority - G6 > Symantec Class 2 Public Primary Certification Authority - G4 > Symantec Class 2 Public Primary Certification Authority - G6 > thawte Primary Root CA > thawte Primary Root CA - G2 > thawte Primary Root CA - G3 > VeriSign Class 1 Public PCA - G3 > VeriSign Class 2 Public PCA - G3 > VeriSign Class 3 Public Primary Certification Authority - G3 > VeriSign Class 3 Public Primary Certification Authority - G4 > VeriSign Class 3 Public Primary Certification Authority - G5 > VeriSign Universal Root Certification Authority
Could we have a list of the subCAs that are being considered for exemption for the distrust? _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy