To whom it may concern
We have to inform you about a mis-issuance of a SSL multi-domain certificate
with a wrong SAN entry showing the word “dns” again (no valid FQDN). We
detected this error this morning based on our now implemented cablint based
error detection system. The certificate concer
Am Freitag, 15. September 2017 16:25:36 UTC+2 schrieb Gervase Markham:
> On 15/09/17 13:55, cornelia.enk...@gmail.com wrote:
> > technically the CA now is disabled to sign certificates using SHA1
>
> But presumably you thought that was true before this incident? (And if
> not, why not?)
>
> Gerv
Thanks, Rob, for the investigation. We detected that the certificates were
incorrectly issued in 2009 with a double serial number. The CA software used in
recent years had special protection against abusive issuing and revocation of
certificates with the same serial number. This led to the situa
3 matches
Mail list logo