It simply MUST NOT become the case that everyone who has a problem with a cert from a trusted CA receives their customer support from mozilla. CAs cannot rely on bugzilla.mozilla.org as their bug tracking system.
But it will happen if NSS is the only application around enforcing some rules.
Maybe the best solution would be an on-line page that can test certs, and tell with a lot of details, references to the norms, what is wrong in them.
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
