On 24/02/16 02:26, Eric Mill wrote: > It would also be worth learning what segment of the market these 10,000 > terminals would affect. I've seen these terminals before: > > https://www.google.com/search?q=worldpay&espv=2&biw=1168&bih=783&site=webhp&source=lnms&tbm=isch&sa=X&ved=0ahUKEwj91arSqo_LAhUBOSYKHZ4_AtYQ_AUICCgD#tbm=isch&q=worldpay+terminal > > Many of them are used by small businesses and sole proprietors. Many of > them are used by large businesses. Which kind of customer is being affected > should factor into Mozilla's decision.
I don't agree: "Do not pervert justice; do not show partiality to the poor or favouritism to the great, but judge your neighbour fairly." -- Leviticus 19:15 > Has testing of whether it will break the intended clients been done yet? > Or, will it be done before the certificates are issued? Turns out, these clients do do revocation checking, and various people are against "split horizon" OCSP, so we will rely on OneCRL only. Gerv _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
