On Fri, 21 Oct 2016 10:03:46 -0700 (PDT), Han Yuwei wrote: > I am also a StartCom's SSL & S/MIME certificate user. The only problem for me > is that I must re-config nginx. S/MIME have a lot of alternatives for free. > Code Signing may only works on Windows but Microsoft seems like don't care > about this because CNNIC is still trusted.
In my experience, StartCom's non-EV codesigning certificates were never actually useful - they explicitly disable timestamping, so after the certificate expires, the signature is rendered invalid. -- begin .sig < Jernej Simončič ><>◊<>< jernej|s-ng at eternallybored.org > end
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy