Dean Coclin <dean.j.coc...@verizon.net> writes: >The same one they've been using and know works: VeriSign Class 3 >International Server CA - G3.
So the devices will trust any cert from this CA? This is a serious question, a contractor once got into USG infrastructure with a $20 or so cert because they'd done the same thing, contracted their private PKI out to a public CA, so their infrastructure trusted any cert chaining up to the CA's roots. Anyone know if one of these: http://www.ebay.com/itm/WorldPay-Verifone-Credit-Card-Transaction-Terminal-With-Printer-New-In-Box-/301863681435 http://www.ebay.com/itm/WorldPay-Zinc-Chip-and-Pin-Mobile-Card-reader-/262304198832 would use these certs? Peter. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy