Ryan Sleevi <r...@sleevi.com> writes: >>Following up on this, would it be correct to assume that, since no-one has >>pointed out any impact that this had on anything, that it's more a >>certificational issue than anything with real-world consequences? > >That seems quite a suppositional leap, don't you think?
It's been more than two weeks since the issue was first reported, if no-one's been able to identify any actual impact in that time - compare this to say certificate-induced outages which make the front page of half the tech news sites on the planet when they occur - then it seems reasonable to assume that the impact is minimal if not nonexistent. In any case I was inviting people to provide information on whether there's been any adverse effect in order to try and gauge the magnitude, or lack thereof, of this event. Peter. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
