On 04.12.2018 15:16, Kurt Roeckx via dev-security-policy wrote:
I think you misunderstood my question. I think you should never serve an invalid file. I think it's better to have a file that is 1 or 2 days old then it is to have an invalid file. So you could check that it's a valid file before you start serving it, and if it's invalid keep the old file.As I mentioned in the incident report, we have deployed additional verification of certificate and CRL signatures in the external component, in addition to the signing module. This module blocks the issuance of certificates and CRLs that have an invalid signature.
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
