Thanks to all of you who have reviewed and commented on this request from
DocuSign to include the following root certificates, turn on the Websites and
Email trust bits for all of them, and enable EV treatment for all of them.
+ Certplus Root CA G1 - (SHA512, RSA4096)
+ Certplus Root CA G2 - (SH
On Monday, May 9, 2016 at 1:34:36 PM UTC-7, Rob Stradling wrote:
> > The "X.509 Certificate (PEM)" field in that Salesforce record contains two
> > copies of the 948e1652586240d453287ab69caeb8f2f4f02117 cert. This might be
> > what caused the wrong hash to be calculated.
> >
> > Kathleen: Is it po
On Thursday, May 5, 2016 at 6:57:21 AM UTC-7, Peter Bowen wrote:
> Nope, not acyclic. Already seen proof of that.
Correct - the Web PKI is a distributed, directed, cyclic graph.
> Consider the inverse.
>
> A root CA issues a CA certificate that is technically constrained
> (KP=serverAuth, pe
Yes, that fixed "Microsoft IT SSL SHA2".
The imaginary 280D03194C3141D51152AC160FD1DF675BABFBDA cert has gone.
The real 948E1652586240D453287AB69CAEB8F2F4F02117 cert is now shown as
"Disclosed" on crt.sh.
On 09/05/16 21:27, Ben Wilson wrote:
I think I fixed it by pasting in the right PEM.
I think I fixed it by pasting in the right PEM.
-Original Message-
From: Rob Stradling [mailto:rob.stradl...@comodo.com]
Sent: Monday, May 9, 2016 2:07 PM
To: mozilla-dev-security-pol...@lists.mozilla.org; Ben Wilson
Subject: Data entry errors (was Re: Undisclosed CA certificates)
On 0
On 09/05/16 21:07, Rob Stradling wrote:
Ben: You might want to fix this record in Salesforce.
Ben, two more of the entries you added have the wrong SHA-1 fingerprint...
ECRaizEstado - d34b Baltimore Baltimore CyberTrust Root SCEE
ECRaizEstado 6DB6F9D0D20096775111D24809BFD740F69C424B
...is a
On 04/05/16 12:06, Rob Stradling wrote:
I'm aiming to produce an (automatically updated) list of CA certificates
that are known to CT but are not (yet) in SalesForce.
As promised, here it is...
https://crt.sh/mozilla-disclosures
This entry is currently in the "Disclosed; Unknown to crt.sh"
On 04/13/16 20:32, Kathleen Wilson wrote:
All,
I have added links to reports of the responses to the March 2016 CA
Communication survey:
https://wiki.mozilla.org/CA:Communications#March_2016_Responses
For the responses to Question 1a:
DocuSign (OpenTrust/Keynectis) indicated 2015 Dec 31 but
On Monday, April 25, 2016 at 7:28:35 AM UTC-7, Kathleen Wilson wrote:
>
> It will take me some time to reach out to each of these CAs to have them
> check to see if the email got caught in their SPAM filter, or if their
> Primary POC has changed or been out of the office, etc. I did receive email
9 matches
Mail list logo
