I looks like Firefox is not checking intermediate CA certificates using OCSP or CRL's. Found some sites saying that intermediate CA revocation information is published using OneCRL (not sure if this information is accurate).
That means that if I have an internal CA and would need to revoke an intermediate CA certificate signed by my root CA, Firefox would never notice. Any way to solve this? Regards, Martin
_______________________________________________ Enterprise mailing list [email protected] https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to [email protected] with a subject of "unsubscribe"
