Re: help

[Ryan Sleevi]

On Tuesday, November 1, 2016 at 4:39:41 AM UTC-7, chun.yi...@cn.pwc.com wrote:
> Gerv
> 
> It is not that easy to use gmail in China.  Can you please approve my
> subscription?  I have business need to follow up the latest conversation
> over CA discussion.
> 
> Many thanks!

Your posts are appearing just fine, and being distributed to all participants. 
See - 
https://www.mail-archive.com/dev-security-policy@lists.mozilla.org/msg04826.html
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: help

[chun . yin . cheung]

Gerv

It is not that easy to use gmail in China.  Can you please approve my
subscription?  I have business need to follow up the latest conversation
over CA discussion.

Many thanks!

Regards

CY

> 在 2016年11月1日，下午7:18，Gervase Markham  写道：
>
>> On 31/10/16 06:30, chun.yin.che...@cn.pwc.com wrote:
>> Help.  My previous email account (cheungchun...@gmail.com) Is blocked.
I want to subscribe to the mailgroup using my company account
(chun.yin.che...@cn.pwc.com).
>
> I don't know why you think it's blocked, but you can see details on how
> to subscribe here:
> https://www.mozilla.org/en-US/about/forums/#dev-security-policy
>
> Gerv
>
_
The information transmitted is intended only for the person or entity to which 
it is addressed 
and may contain confidential and/or privileged material.  Any review, 
retransmission, dissemination 
or other use of, or taking of any action in reliance upon, this information by 
persons or entities other 
than the intended recipient is prohibited. If you received this in error, 
please contact the sender and 
delete the material from any computer. Any views or opinions expressed in this 
email are solely 
those of the author and do not necessarily represent those of PwC.

___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: Something About CFCA (China Financial Certification Authority)

[Han Yuwei]

在 2016年10月31日星期一 UTC+8下午6:19:44，jonath...@gmail.com写道：
> 在 2016年10月31日星期一 UTC+8上午11:28:04，Han Yuwei写道：
> > 在 2016年10月31日星期一 UTC+8上午9:35:04，jonath...@gmail.com写道：
> > > Please see 6.1.7 which describes these content.
> > 
> > In version 3.2 I see that "证书最长期限（年）" (maxium validity period) about 
> > "SSL服务器证书" (SSL Server Certficates) is 5.
> > 
> > And I don't see any other informations about SM2 usage
> 
>  We feel that there is no  need to discuss those root that NOT included in 
> Mozilla and  other public trusted root store. sm2 is not valid for BR right 
> now，so we didn't apply our sm2 root for inclusion. It is as simple as that. 
> hence， we do not plan to explain further about our NOT included root.

Ok, thanks for your time.
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: help

[Han Yuwei]

在 2016年10月31日星期一 UTC+8下午11:29:27，chun.yi...@cn.pwc.com写道：
> Help.  My previous email account (cheungchun...@gmail.com) Is blocked.  I 
> want to subscribe to the mailgroup using my company account 
> (chun.yin.che...@cn.pwc.com).
> 
> Regards
> 
> CY
> 
> > 在 2016年10月28日，下午11:28，Chun Yin Cheung  写道：
> > 
> > help
> > 
> > Regards
> > 
> > CY
> 
> _
> The information transmitted is intended only for the person or entity to 
> which it is addressed 
> and may contain confidential and/or privileged material.  Any review, 
> retransmission, dissemination 
> or other use of, or taking of any action in reliance upon, this information 
> by persons or entities other 
> than the intended recipient is prohibited. If you received this in error, 
> please contact the sender and 
> delete the material from any computer. Any views or opinions expressed in 
> this email are solely 
> those of the author and do not necessarily represent those of PwC.

Maybe you used S/MIME ?
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: WoSign: updated report and discussion

[Han Yuwei]

在 2016年11月1日星期二 UTC+8下午6:43:53，Gervase Markham写道：
> On 31/10/16 18:25, Percy wrote:
> > According to http://se.360.cn/event/gmzb.html, the browser needs to send a
> > http header Accept-Protocal: SM-SSL. 
> 
> That seems like an odd mechanism, because SSL connection establishment
> happens before HTTP header transmission. Does this header mean "Next
> time you contact me, use SM2"?
> 
> Gerv

Yes. And it may be decided by a USB-key.
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: help

[Gervase Markham]

On 31/10/16 06:30, chun.yin.che...@cn.pwc.com wrote:
> Help.  My previous email account (cheungchun...@gmail.com) Is blocked.  I 
> want to subscribe to the mailgroup using my company account 
> (chun.yin.che...@cn.pwc.com).

I don't know why you think it's blocked, but you can see details on how
to subscribe here:
https://www.mozilla.org/en-US/about/forums/#dev-security-policy

Gerv

___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Re: WoSign: updated report and discussion

[Gervase Markham]

On 31/10/16 18:25, Percy wrote:
> According to http://se.360.cn/event/gmzb.html, the browser needs to send a
> http header Accept-Protocal: SM-SSL. 

That seems like an odd mechanism, because SSL connection establishment
happens before HTTP header transmission. Does this header mean "Next
time you contact me, use SM2"?

Gerv

___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy