Frank Hecker wrote: > I agree that it would be a good thing if Entrust (or any CA, for that > matter) used technical means (like sending email to postmaster or > whatever) to verify domain name ownership for non-EV SSL certs, in > addition to whatever other procedures are used.
In the past, at least, I've used "email a contact at the domain" as the minimum required for me to accept the process for the issuance of DV certs. Given that this process can be almost entirely automated, it would strike me as surprising if any CA wasn't doing it, but did more expensive manual processes instead. <shrug> Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
