Re: 2018.08.23 Let's Encrypt OCSP Responder Incident

Josh, Thank you for submitting this incident report. I created a bug to track the incident and remediation efforts: https://bugzilla.mozilla.org/show_bug.cgi?id=1486650 - Wayne On Fri, Aug 24, 2018 at 1:07 PM josh--- via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > To

Re: Audit Reminder Email Summary

On Sun, Aug 26, 2018 at 11:25 PM reinhard.dietrich--- via dev-security-policy wrote: > Dear all > > This is a joint answer to Waynes' request. > > it was mentioned that the audit period was exceeded. We would like to > explain the situation and what was undertaken to avoid such situation again.

Re: No Russian CAs

On Friday, August 24, 2018 at 11:23:37 AM UTC-7, Caju Mihai wrote: > Greetings, > I would like to ask why there are no root certificate authorities from > organizations in the Russian Federation. Specifically I haven't found any > with the country code RU in the NSS CA bundle. Is it due to

Re: Audit Reminder Email Summary

Dear all This is a joint answer to Waynes' request. it was mentioned that the audit period was exceeded. We would like to explain the situation and what was undertaken to avoid such situation again. We all are aware that the audit period was exceeded by two months. However the conducted