On 22/12/16 14:30, Tom Delmas wrote:
> There are other mechanisms. But hard to use, especially between
> countries. As a Firefox user,
> I expect that CA trusted by Firefox are clearly identifiable and
> distinguishable from each others.
If CAs ever did something specific to Firefox or the root pr
+richard=wosign@lists.mozilla.org] On
Behalf Of Tom Delmas
Sent: Thursday, December 22, 2016 10:30 PM
To: Gervase Markham
Cc: mozilla-dev-security-pol...@lists.mozilla.org
Subject: Re: wosign and letsencrypt.cn / letsencrypt.com.cn
Hi Gerv,
> It's never come up. But I think we would be relu
Hi Gerv,
> It's never come up. But I think we would be reluctant to intervene;
Thank you for that answer. I understand it.
> there are other mechanisms for sorting out such disputes, and it's not
> our job to interpret or enforce trademark law or domain name dispute
> resolution law.
There are o
On 21/12/16 12:42, tdel...@gmail.com wrote:
> I think Mozilla still doesn't answer my first question:what is the
> position of Mozilla regarding CA that act in bad faith regarding the
> usage of the names associated with others CA (like, registering such
> trademarks or domains) ?
It's never come
On Monday, December 19, 2016 at 2:45:16 AM UTC+1, Richard Wang wrote:
> I wish everyone can talk about this case friendly and equally.
I'm sorry about the wosing-bashing that followed. It wasn't my intention.
> We know Let's Encrypt is released after the public announcement, but two day
> later,
People here tend to bash WoSign/StartCom the whole time and make them guilty
for nearly everthing, including the Lindbergh Kidnapping. I also do think
people are actively searching for anything they can blame, and ignore/tolerate
incidents of other CAs.
Am Freitag, 16. Dezember 2016 19:18:27 U
在 2016年12月20日星期二 UTC+8下午8:21:33,Tom写道:
> According to The Uniform Domain-Name Dispute-Resolution Policy,
> letsencrypt.cn seem use in bad faith.
>
> On December 20, 2016 2:45:47 PM GMT+08:00, "谭晓生" wrote:
> >It is ICP license you talked about, you can find some information here:
> >https://suppo
According to The Uniform Domain-Name Dispute-Resolution Policy, letsencrypt.cn
seem use in bad faith.
On December 20, 2016 2:45:47 PM GMT+08:00, "谭晓生" wrote:
>It is ICP license you talked about, you can find some information here:
>https://support.cloudflare.com/hc/en-us/articles/209714777-ICP-F
ehalf Of j...@letsencrypt.org
> Sent: Monday, December 19, 2016 12:36 PM
> To: mozilla-dev-security-pol...@lists.mozilla.org
> Subject: Re: wosign and letsencrypt.cn / letsencrypt.com.cn
>
> We had some trouble figuring out how to purchase a Chinese domain name
befo
ent: Monday, December 19, 2016 12:36 PM
> To: mozilla-dev-security-pol...@lists.mozilla.org
> Subject: Re: wosign and letsencrypt.cn / letsencrypt.com.cn
>
> We had some trouble figuring out how to purchase a Chinese domain name before
> we launched, so we didn't purchase it the
time.
Best Regards,
Richard
-Original Message-
From: dev-security-policy
[mailto:dev-security-policy-bounces+richard=wosign@lists.mozilla.org] On
Behalf Of j...@letsencrypt.org
Sent: Monday, December 19, 2016 12:36 PM
To: mozilla-dev-security-pol...@lists.mozilla.org
Subject: Re: wosig
On Sunday, December 18, 2016 at 5:45:16 PM UTC-8, Richard Wang wrote:
> I wish everyone can talk about this case friendly and equally.
>
> It is very common that everyone can register any domain based on the first
> come and first service rule.
>
> We know Let's Encrypt is released after the pub
On Sunday, December 18, 2016 at 5:45:16 PM UTC-8, Richard Wang wrote:
> We know Let's Encrypt is released after the public announcement, but two day
> later, its .cn domain is still not registered, I think maybe it is caused by
> the strict registration rule in China, so I registered it for prote
Dear WoSign,
That's interesting. So why you start to talking about it today after those
domains been exposed?
You have a plenty of time to donate that before today isn't it?
BTW: I do fuzzyly remember one day I clicked one of those domain, it isn't a
404 page back then.
___
在 2016年12月19日星期一 UTC+8下午12:36:10,jo...@letsencrypt.org写道:
> We had some trouble figuring out how to purchase a Chinese domain name before
> we launched, so we didn't purchase it then. We've never talked to wosign
> about this before, and we haven't seen the domain used for anything confusing
> s
We had some trouble figuring out how to purchase a Chinese domain name before
we launched, so we didn't purchase it then. We've never talked to wosign about
this before, and we haven't seen the domain used for anything confusing so far.
This is our first interaction about it and we're happy to h
I wish everyone can talk about this case friendly and equally.
It is very common that everyone can register any domain based on the first come
and first service rule.
We know Let's Encrypt is released after the public announcement, but two day
later, its .cn domain is still not registered, I th
Well, based on the previous deception of WoSign before, during and after
Mozilla's investigation, I'm not remotely surprised to see this.
On Friday, December 16, 2016 at 10:18:27 AM UTC-8, tde...@gmail.com wrote:
> It seams that wosign has registered the domains letsencrypt.cn and
> letsencryp
18 matches
Mail list logo