On Sat, Jun 8, 2024 at 6:29 PM Paul Wouters <[email protected]> wrote:
> > > On Jun 8, 2024, at 18:16, Watson Ladd <[email protected]> wrote: > > > > > > Could Mozilla update the root store policy to make clear that > > improvements like ACME shouldn't be extra cost items but instead > > considered part of the service provided to customers. > > I don’t have an opinion on this but as someone who at $dayjob has been > forced to request non-acme certificates manually, let me assure you that > any vendor requiring me to do that quickly gets pulled in the “vendors to > migrate away from” list. Any CA preferring manual issuance over automated > issuance is going to find itself out of business soon (as are vendors > providing web services requiring their customers to send them certs once a > year manually while promising to support acme “soon”) I guess that’s a nice assurance, but what does “soon” mean? July? Are you buying enough certs to swing the economics of a major CA? The problem right now is Subscribers who *don’t* want to adopt automation, perhaps in part because Entrust would charge them extra for it. They are the excuse being used too frequently for the dereliction of duty. Mike -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CADQzZqu0gZvsUZhbh4rnRHdKEuK3FqenSZ-D-Tyu0wQHp3aB7g%40mail.gmail.com.
