Alaric Dailey wrote: > Not to take this discussion to far off track, but why would the user > trust a proxied verification of the cert they are trying to verify? > Something else should be done about that. In theory, that would work, since the CRL's and OCSP responses are signed by the issuing CA. However I don't get the point really, why this should be necessary or useful?
-- Regards Signer: Eddy Nigg, StartCom Ltd. Phone: +1.213.341.0390
_______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
