Re: About upcoming limits on trusted certificates

On Wednesday, March 11, 2020 at 4:11:56 PM UTC-7, Kathleen Wilson wrote: > To start with, it is common for a domain name to be purchased for one > year. A certificate owner that was able to prove ownership/control of > the domain name last year might not have renewed the domain name. So why >

Re: Question about the issuance of OCSP Responder Certificates by technically constrained CAs

On Tuesday, September 10, 2019 at 6:53:47 AM UTC-7, Robin Alden wrote: > > The aforementioned comments, however, indicate CAs have reported that > > Microsoft does [require the EKU chaining]. > I agree that statement is true, but I think it inadvertently misleads. > > We cannot speak for

Re: 2019.08.28 Let’s Encrypt OCSP Responder Returned “Unauthorized” for Some Precertificates

On Thursday, August 29, 2019 at 4:37:04 PM UTC-7, Jacob Hoffman-Andrews wrote: > Also filed at https://bugzilla.mozilla.org/show_bug.cgi?id=1577652 > > On 2019.08.28 we read Apple’s bug report at > https://bugzilla.mozilla.org/show_bug.cgi?id=1577014 about DigiCert’s OCSP > responder returning