Re: Let's Encrypt and Wildcard Domains

2017-08-28 Thread Patrick Figel via dev-security-policy 
In what way would this be a policy violation? Most CAs trusted by
Mozilla issue wildcard certificates.

Perhaps you were thinking of EV certificates? For EV, wildcard is indeed
not permitted, but Let's Encrypt does not issue EV at all.

On 29/08/2017 04:31, David E. Ross via dev-security-policy wrote:
> I just read mention that Let's Encrypt will be enabling wildcard
> domains, possibly by the end of this year.  Is this not a violation of
> Mozilla policy?
> 
> I saw this in the eternal-september.support newsgroup, which is
> available only via the news.eternal-september.org NNTP server.  The
> thread subject was "Expired Server Certificate".
> 
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Let's Encrypt and Wildcard Domains

2017-08-28 Thread David E. Ross via dev-security-policy 
I just read mention that Let's Encrypt will be enabling wildcard
domains, possibly by the end of this year.  Is this not a violation of
Mozilla policy?

I saw this in the eternal-september.support newsgroup, which is
available only via the news.eternal-september.org NNTP server.  The
thread subject was "Expired Server Certificate".

-- 
David E. Ross


Yes, George Washington, Thomas Jefferson, and other
"founding fathers" owned slaves.  However, they created
a nation.  Robert E. Lee, Jefferson Davis, Thomas
"Stonewall" Jackson and other "heroes" of the
Confederacy tried to tear the nation apart.  Statues
and other monuments to those "heroes" of the
Confederacy actually celebrate traitors and treason.

See my .
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy