On Monday, 9 October 2017 11:41:53 UTC+1, Gervase Markham wrote:
> Any objections?
One nice thing about the current situation is that CAs are permitted (though not obliged) to arrange robustness against technical failure.
If the only official way to contact Honest Achmed's CA is to email ach...@honestca.example, and then whoops, honestca.example have a SMTP server outage or they get blacklisted by the email provider we use unknown to us, or a million other things happen, we can't contact Achmed at all.
Right now, if Achmed is worried about that he can list
ach...@gmail.com, and
os...@hotmail.com (Achmed's cousin Osman still uses Hotmail in 2017) and so on, and Mozilla has a better chance to actually reach somebody. Yes it's more hassle, but handling _that_ part is surely something Mozilla could worry about?