Hello Wayne,
I’ve investigated the OCSP’s issue time ago, I can tell you that it’s related with https://github.com/golang/go/issues/21527 cause we send all the certs chaining up to the roots. BR Juan Angel De: Wayne Thayer [mailto:[email protected]] Enviado el: miércoles, 17 de enero de 2018 19:14 Para: [email protected] CC: mozilla-dev-security-policy <[email protected]> Asunto: Re: Camerfirma's misissued certificate Thank you for reporting this misissuance. Since this is a different issue than described in bug 1390977, I have created a new bug to track this problem and your response: https://bugzilla.mozilla.org/show_bug.cgi?id=1431164 Please also post your incident report here. Also, the crt.sh link above is reporting the following OCSP error for this certificate: "OCSP response contains bad number of certificates" Please investigate. - Wayne On Wed, Jan 17, 2018 at 9:27 AM, Juan Angel Martin via dev-security-policy <[email protected] <mailto:[email protected]> > wrote: Hello, I have to inform you about a SSL certificate misissued. OU contains non-printable control characters. https://crt.sh/?id=305441195 It has already been revoked. Regards Juan Angel Martin Gomez AC Camerfirma _______________________________________________ dev-security-policy mailing list [email protected] <mailto:[email protected]> https://lists.mozilla.org/listinfo/dev-security-policy
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
