On 11/05/2009 07:33 PM, Ian G:
Now you're getting it. It is not acceptable to simply achieve
consensus and go out and burn witches coz we all like that.
What's wrong with achieving consensus? Others fight for years to achieve
that.
Here's a suggestion from Satan. Add to clause 7:
* certificates issued for internal usage must not be issued over
domain names that use (insert proper langauge) TLDs registed by IANA.
A separate subroot should be used for this, and the naming should be
made so as to be obviously not confusing with any TLD.
It's been in the problematic practices for quite some time, it's a
candidate for the policy (or by proxy if it will be in the Basic SSL
Guidelines). Your contributions would be perceived very differently if
you would do as above. Simply say, that you think that we need to add to
the policy.......
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
XMPP: [email protected]
Blog: http://blog.startcom.org/
Twitter: http://twitter.com/eddy_nigg
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
