The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 |
Newsgroups: mozilla.dev.security.policy
From: Eddy Nigg <eddy_n...@startcom.org>
Date: Thu, 28 Jan 2010 13:43:24 +0200
Local: Thurs, Jan 28 2010 6:43 am
Subject: Re: CNNIC Root Inclusion
On 01/28/2010 08:40 AM, Nelson Bolyard:
> Well, if that's the case, then the protests being lodged against CNNIC as Nelson, before commenting I suggest to read the concerns which were > an issuer of SSL server certs are all the more absurd. raised at the comments posted at the bugs in order to understand what they are. Those are starting from: https://bugzilla.mozilla.org/show_bug.cgi?id=476766#c18 and https://bugzilla.mozilla.org/show_bug.cgi?id=542689 > But my point is that any arguments that are based on the presence of malware This is not the issue, but it was provided by the concerned parties as > are irrelevant and should not be considered in whether or not > the CA acted properly as a CA. part of their "evidence" to confirm those concerns. The claims are raised in the bug entries and at other places such as twitter and I believe Mozilla and the community should at least listen to them and consider if and how they are relevant regarding the root inclusion here. Apparently there might be issues with the inclusion of this CA root which we haven't considered here (because nobody raised any concern at that time). If the claims are correct, than this might be a serious cause for -- Regards Signer: Eddy Nigg, StartCom Ltd. You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
| |||||||||||||