Frank Hecker wrote: > Nelson B Bolyard wrote: >> So, where's the official list of CA certs in mozilla? > > Right now we don't have such an official list, other than what's in the > source code itself. I've never had the time to go through the source and > create a web page with a list of CAs, especially with the additional > information I try to collect, like web site URLs, policy documents, > links to WebTrust audit reports, URLs for CRLs and OCSP, etc.).
I would suggest adding the additional info as comments into the http://lxr.mozilla.org/seamonkey/source/security/nss/lib/ckfw/builtins/certdata.txt file itself. >> And where is the official list of certs not in mozilla (with reasons >> why)? My preference would be a bugzilla query. Put the query URL in the beginning of the certdata.txt as well. The query should probably show both wontfix and currently-in-progress-or-limbo requests. -- Heikki Toivonen _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
