On 7/25/14, 3:11 PM, Kathleen Wilson wrote:
On 7/4/14, 6:27 AM, Hubert Kario wrote:
The newly released NSS 3.16.3 doesn't include 1024 bit CA certificates
any more[1]. This will of course impact users of servers that still use
it.
<snip>
That's why I think that we should ship the intermediate CA certificates
to make Firefox continue to interoperate with such sites.
<snip>
== For this batch of root changes ==
We are still investigating if we should use this possible solution for
this batch of root changes. Please stay tuned and continue to share data
and test results that should be considered.
I have filed a bug regarding this:
https://bugzilla.mozilla.org/show_bug.cgi?id=1045189
Thanks,
Kathleen
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
