Gervase Markham wrote:
Jean-Marc Desperrier wrote:
But by far the most interesting thing on the site is the list of ssl
sites that are *still* using compromised keys, established through that
extension :
http://www.codefromthe70s.org/sslblacklist-badcerts.aspx
Hmm. walmart.com is the big hitter on that list. Presumably they have
online shopping. We should get in touch with them.
They have already replaced their cert. See it by clicking on the "check"
link.
The first on the list that is still really broken is
"rec1.globalepanel.com".
Now did we not receive promises by the CAs that they were *actively*
working to solve the problem and get all sites to replace their cert ?
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
