On 5/19/14, 9:40 AM, Rick Andrews wrote: > Kathleen, that means we'll be disclosing a number of intermediates > used to sign certificates that are not used for SSL, Code Signing or > Mail (the three trust bits that Firefox lets me view/edit). For > example, we issue a lot of client auth certs from our public roots. > > Based on your previous comments, I assume you expect those to be > disclosed too, even though Mozilla products likely will never > encounter them, or work with them if encountered. Please confirm.
I'm only interested in the intermediate certs that can be used to issue certs for SSL, Code Signing, or Mail (the three trust bits that are set in NSS).
Kathleen _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy