Besides which, if something was signed AT THE TIME when the certificate chain was valid, then that signature will be a valid signature forever (unless one of the certificates in the chain is revoked). The future or current expiry of a certificate or an intermediary has no effect whatsoever on the validity of a signature IF THE CERTIFICATE CHAIN WAS VALID at the time the signature was made, and the chain can be verified TO HAVE BEEN VALID at the time the signature was made.
In other words, the fact that subsequent to making a signature the pen ran out of ink does not make the signature invalid. If it did so then there would be no point in having signatures. It may be impossible to make a valid signature with a pen that is out of ink, but that does not invalidate signatures made before the ink ran out. --- The fact that there's a Highway to Hell but only a Stairway to Heaven says a lot about anticipated traffic volume. >-----Original Message----- >From: NANOG [mailto:nanog-bounces+kmedcalf=dessus....@nanog.org] On >Behalf Of Keith Medcalf >Sent: Friday, 3 May, 2019 20:48 >To: NANOG list >Subject: RE: Widespread Firefox issues > > >Clearly false, since it is 2019-05-04 02:46:31.342994 now and nothing >whatsoever happened to my Firefox browser, and all the extensions are >still working just fine. > >--- >The fact that there's a Highway to Hell but only a Stairway to Heaven >says a lot about anticipated traffic volume. > > >>-----Original Message----- >>From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Brielle >>Bruns >>Sent: Friday, 3 May, 2019 19:56 >>To: NANOG list >>Subject: Widespread Firefox issues >> >>Just an FYI since this is bound to impact users: >> >>https://bugzilla.mozilla.org/show_bug.cgi?id=1548973 >> >>Basically, Mozilla forgot to renew an intermediate cert, and >people's >>Firefox browsers have mass-disabled addons. >> >>Whoops. >>-- >>Brielle Bruns >>The Summit Open Source Development Group >>http://www.sosdg.org / http://www.ahbl.org > >
