Last time this happened (see the thread Jonathan Doe linked to), we did see this with customers looking to move to Sectigo - but it was quickly remedied with Jeremy and Tim H's help. We haven't seen a problem with DigiCert again since.
I will say that we are now seeing the same with Entrust customers who are being told that active certificates will be revoked if contracts are not renewed, in clear language. I have privately sent the details of at least one customer to Bruce, and hopefully he can confirm this was an error on the part of the Entrust employee, or that it is indeed Entrust's policy. Nick On Thursday, August 1, 2024 at 1:21:58 AM UTC+1 Mike Shaver wrote: > On Wed, Jul 31, 2024 at 8:19 PM Matt Palmer <[email protected]> wrote: > >> On Wed, Jul 31, 2024 at 04:02:50PM -0700, 'Bruce Morton' via >> [email protected] wrote: >> > Without more details about your specific situation, it’s difficult to >> > address your concern effectively. Please reach out to me personally, >> and I >> > will do my best to assist you. >> >> Given Entrust's perceived past (lack of) transparency in communications, >> it might be better if as much of this issue could be resolved in public. >> >> Can you provide any insight into why any Entrust subscriber may have >> gained the impression that "if we did not renew the contract, all active >> certificates would be revoked"? Even if that is not Entrust's >> intention, the fact that a subscriber may have gotten that impression >> from, say, an over-zealous salesperson or poorly-worded email is very >> troubling. > > > Have to disagree here, Matt. I don’t think it will be as effective for > this discussion to be redacted as it would need to be in order to be > public, and still protect J Doe, and I think that we can take Bruce’s offer > to investigate in good faith. > > If it becomes a pattern that’s reported more widely—and I think it would > spread quickly, given the visibility of Entrust’s difficulties of late—then > we might get to the point of “very troubling”. Let’s not use up all our > strong language on the earliest wisps of concern. :) > > Mike > > -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/ba349e3d-2667-4d90-a841-0747e79a113fn%40mozilla.org.
