On Wed, May 11, 2016 at 11:08 PM, Hubert Kario <hka...@redhat.com> wrote:
> I haven't tested it, but I don't think that will stop NSS trusting RSA
> certificates signed by ECC CAs.

There are plenty of things that NSS will still do with ECC if you
disable ECC cipher suites.  That's for sure.  If you are scared of
ECC, then compile it out with NSS_DISABLE_ECC.
-- 
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto

Reply via email to