On Wed, 22 Nov 2017 12:26:15 +0100 Tom via dev-security-policy <dev-security-policy@lists.mozilla.org> wrote:
> About the past behavior of WoSign, the incident report > https://www.wosign.com/report/WoSign_Incident_Final_Report_09162016.pdf > from https://wiki.mozilla.org/CA:WoSign_Issues seems missing. It can be read through wayback machine: https://web.archive.org/web/20170203172437/https://www.wosign.com/report/WoSign_Incident_Final_Report_09162016.pdf I was wondering if I should edit the wiki, but it's linked at multiple places and other PDFs as well that may have disappeared. In any case: I agree these are legitimate questions, if past CA incidents happen the documents describing them shold be properly archived. I think having a rule that one copy of them has to be stored on mozilla infrastructure is wise. -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy