On 06/21/2014 07:15 PM, Kurt Roeckx wrote:
But I would like to start enforcing the 2048 bit as soon as
possible. Do we have some criteria for at which point we're
willing to break compatibility?
I'm in favor of enforcing it which will help reduce even mistakenly
issued certificates with smal
On 21/06/14 17:15, Kurt Roeckx wrote:
> There are still a few new certificates generated with 1024 bits.
> I've been filing bugs about those and there were only a few so
> far this month.
Thank you for doing this work; it really is appreciated.
Gerv
On Sat, Jun 21, 2014 at 05:37:20PM -0700, David E. Ross wrote:
> >
> > There are still a few new certificates generated with 1024 bits.
> > I've been filing bugs about those and there were only a few so far this
> > month. Maybe we can set a date from which we won't be accepting
> > certificates
On 6/21/2014 11:37 AM, Jeremy Rowley wrote:
> I think getting them revoked would be the first step. If you make the data
> available about which CAs still have 1024 bit certs or lower, we could email
> the CAs and find out what is going on.
>
> Jeremy
>
> -Original Message-
> From: dev-s
I think getting them revoked would be the first step. If you make the data
available about which CAs still have 1024 bit certs or lower, we could email
the CAs and find out what is going on.
Jeremy
-Original Message-
From: dev-security-policy
[mailto:dev-security-policy-bounces+jeremy.ro
5 matches
Mail list logo