On 03/11/16 20:04, Nick Lamb wrote: > I actually find Rob's "so it would seem" rather reassuring. A CA which has > its own properties (not just one or two key brand name servers) on a high > value check list is not focusing properly on the things the Relying Parties > care about like banks and famous Internet brands likely to be targeted by bad > guys.
:-) > It's slightly funnier that Commodo seemingly doesn't make use of its own CT > alerting service to be warned of such issuances after the fact though. I was alerted to the unexpected Cloudflare crt.sh cert because my installation of Thunderbird is subscribed to https://crt.sh/atom?q=crt.sh. But you're right. I should try to persuade our Infra team to eat the dogfood too. :-) -- Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online Office Tel: +44.(0)1274.730505 Office Fax: +44.(0)1274.730909 www.comodo.com COMODO CA Limited, Registered in England No. 04058690 Registered Office: 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Manchester M5 3EQ This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender by replying to the e-mail containing this attachment. Replies to this email may be monitored by COMODO for operational or business reasons. Whilst every endeavour is taken to ensure that e-mails are free from viruses, no liability can be accepted and the recipient is requested to use their own virus checking software. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy