+1 I got the same understanding when I read this last year.
El jueves, 2 de julio de 2020, 13:38:48 (UTC+2), douglas...@gmail.com escribió: > Ryan, > > Given the recent announcement "SECURITY RELEVANT FOR CAs: The curious case of > the Dangerous Delegated Responded Cert", how does you discussion in this > thread relate to this? Are your responses here to a different question, > because it appears (likely my misinterpretation) from this thread it's OK to > include OCSP-signing into a CA certificate? > > https://groups.google.com/d/msg/mozilla.dev.security.policy/EzjIkNGfVEE/XSfw4tZPBwAJ > > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy