[email protected]於 2018年6月5日星期二 UTC+8下午6時25分00秒寫道: > [email protected]於 2018年6月5日星期二 UTC+8下午5時22分40秒寫道: > > > > > 1. We plan to modify the format of this type of certificate. The new > > certificate format will contain an EKU that excludes anyPolicy, > > emailProtection and serverAuth; besides, there will be no SubjectAltName > > anymore. In other words, neither DNSName nor IPAddress will be included in > > this type of certificate. > > We mean that the new certificate format will contain an EKU that doesn’t > include anyPolicy, emailProtection or serverAuth in it. Thanks. > > Li-Chun
Dear Wayne, After furthermore investigating these 10 dedicated server application software certificates, we found that 5 of them are not in use now. So these subscribers applied for revoking their certificates, and the RA officer of this certificate group revoked these 5 certificates in advance and we updated the file as attached. As you can see in that file of https://bugzilla.mozilla.org/attachment.cgi?id=8984073, the Status column of these 5 certificates are marked as ‘revoked’ with the revocation time in the parentheses. As for the rest 5 valid certificates, we will also revoke them once their new certificates with the new format is issued, as we planned before. Sincerely Yours, Li-Chun _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
