Today our post issuance checker notified us of 4 certificates were issued with invalid CN values this afternoon.
We posted our incident report here: https://bugzilla.mozilla.org/show_bug.cgi?id=1552586 In summary, 4 certificate were issued from an API that had been depreciated, but not functionally disabled. All customers were migrated from this API but the API was not disabled. One of our custom on-premise applications was misconfigured to use this old API. The CN of the certificates is: "madmin's macboo.int.mlsel.com" They were immediately revoked. Additional detail and ongoing status will be posted in the Mozilla incident.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
