On Sat, Oct 1, 2016 at 6:40 AM, <ramr...@gmail.com> wrote: > Do you have a link to that process and is it automated. Reason is I have a > few hundred startSSL certs that my clients rely on.
I can't speak for the specific process Apple is using, but in general you can use https://crt.sh/ or https://www.google.com/transparencyreport/https/ct/ (among many others) to check and see if the certificates are logged in Certificate Transparency logs. As far as I know, StartCom has not actively logged certificates issued in 2015 or earlier nor have they logged certificates issued in early 2016. So it is very probable that some certificates are not logged. Thanks, Peter _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy