Gerv,
Yes. We'll be revoking both of those. A date is yet to be determined.
Ben
Gerv wrote:
TI Trust Technologies has two intermediate certificates in the CCADB - the one
mentioned above:
https://ccadb.my.salesforce.com/001o00cdd4t
and this one, serial number 0727bfc4:
@lists.mozilla.org]
On Behalf Of Ryan Sleevi via dev-security-policy
Sent: Saturday, August 12, 2017 8:56 PM
To: Ben Wilson <ben.wil...@digicert.com>
Cc: Jonathan Rudenberg <jonat...@titanous.com>;
mozilla-dev-security-pol...@lists.mozilla.org
Subject: Re: Certificates with reserved IP addresses
@lists.mozilla.org
Subject: Re: Certificates with reserved IP addresses
Do you have an estimate on when you can provide an explanation to the community
about how/why this happened, how many certificates it affected, and what steps
DigiCert is taking to prevent these issues in the future? Do you h
Subject: Re: Certificates with reserved IP addresses
Do you have an estimate on when you can provide an explanation to the community
about how/why this happened, how many certificates it affected, and what steps
DigiCert is taking to prevent these issues in the future? Do you have details
about
Do you have an estimate on when you can provide an explanation to the
community about how/why this happened, how many certificates it affected,
and what steps DigiCert is taking to prevent these issues in the future? Do
you have details about why DigiCert failed to detect these, and what steps
The CTJ one was issued in 2013 and is a five year cert (which was also
prohibited under the BRs at that time_. It should have been revoked much
earlier, of course.
-Original Message-
From: dev-security-policy
Congratulations on finding something not caught by certlint. It turns
out that cabtlint does zero checks for reserved IPs. Something else
for my TODO list.
On Sat, Aug 12, 2017 at 6:52 PM, Jonathan Rudenberg via
dev-security-policy wrote:
> Baseline
Thanks. We've sent an email to the operators of the first two CAs (TI Trust
Technologies and Cybertrust Japan) that they need to revoke those certificates.
Thanks again,
Ben
-Original Message-
From: dev-security-policy
8 matches
Mail list logo