On 01/13/2009 05:23 PM, Paul Hoffman:
Useful yes, up to certain extend. If there is too much information in the
policy, it will start to be problematic.
For whom?
For Mozilla mostly.
Most CAs run businesses where written policies are the norm.
Mozilla is not a CA.
Where did Frank say, or even hint, that?
Discussions here. Feel free to correct me (or even better Frank could
get involved a bit more to clarify a few things)
Others disagree. The business model for most CAs are different than yours, it
sounds like.
This is about the Mozilla CA Policy. It's not about CAs, I know what a
CA is, thank you!
This sounds like you want the pulling of a CA to be done informally, outside
the realm of a formal policy. That's fine, but others may differ.
Feel free to suggest and have it implemented otherwise. I was stating
the implemented informal approaches as I know them. It's all within the
realm of the formal policy, I did not suggest otherwise. I'm certain you
can't point me to anything else which would suggest otherwise either.
It's also what I think to be the correct approach. But you are free to
differ and propose a different approach (perhaps one which would pull a
root overnight without notifying the CA even).
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
