On 12/22/2008 05:05 AM, Kyle Hamilton:
On Sun, Dec 21, 2008 at 6:43 PM, Eddy Nigg<[email protected]> wrote:
On 12/22/2008 04:15 AM, Gen Kanai:
Eddy,
Can you provide us a little more background here as to what you just
experienced?
I tried to find out who is behind this scam, but nowhere is the CA listed.
The site itself is secured by an Equifax certificate. So I went all the way
through, registered * and ordered one of their certs for our domain, paid
via Paypal and received a shiny certificate for 45 US$ from Comodo. I
retained all evidences of the emails, screen shots, Paypal payments,
certificates, etc.
I contacted all parties involved including my contact at Comodo. I also had
contact with the operator of this site himself and requested immediate
cessation of all activities including the web site itself.
Why does it matter? We've already seen that the former CEO of the
Mozilla Corporation won't remove anything from the cert store, even if
there are valid complaints against the CA's business or trust.
Not sure if this is a reason to disable a root, but it's certainly
illegal business practice. Hopefully we can settle this with Comodo
directly in appropriate manner.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: [email protected]
Blog: https://blog.startcom.org
_______________________________________________
dev-tech-crypto mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-crypto
