On Sat, 4 May 2019, Klaus Hartnegg wrote:
For passwords we have finally agreed that enforcing frequent changes
was a bad idea. Because the disadvantages outweigh the advantages.
Itâs time to talk about expiring certificates.
I was about to ask what has changed since we started being pushed that way,
but then I remembered that OCSP Must-Staple makes revoking certificates more
practical.
--
Andrew C. Aitchison Cambridge, UK
[email protected]_______________________________________________
Enterprise mailing list
[email protected]
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
[email protected] with a subject of "unsubscribe"
