On Sat, Dec 8, 2018 at 12:50 PM pilgrim2223--- via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote:
> thanks for the suggestions. > > We are exploring the OCSP and CRL checks. It has potential. > > Have you determined if these applications perform revocations checks, or if those checks can be blocked? > > As to getting certs from a different root, that wouldn't help us. We have > no Technical reason to keep underscored certs and are happy to get rid of > them, it is simply the effort required and the timeline given that are an > issue. > > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy