Den man. 19. jun. 2023 kl. 21.24 skrev Thomas Zermeno <[email protected] >:
> This is to provide an update on the revocation of the QuantumCA SubCAs. > They were all revoked within the required timeframe. Since they were never > enabled for ACME, there was never an issue with these SubCAs being used in > the HiCA acme.sh RCE client. > I do not follow your logic. According to the description I have seen, the purpose of exploiting the RCE was to use acme.sh with a CA that was not enabled for ACME. -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CACAF_Whwvm5C4ZU%2BdRP3QfnBetWYqeLGPS3X237u2JxAFoe71A%40mail.gmail.com.
