Date: Wed, 28 Sep 2016 08:40:27 +0200 From: Nikola =?UTF-8?B?UGF2bG92acSH?= <nzp@riseup.net> To: Matthew Seaman <matthew@FreeBSD.org> Cc: freebsd-security@freebsd.org Subject: Re: Two Dumb Questions Message-ID: <20160928084027.20ca33f2@riseup.net> In-Reply-To: <74ed7019-cb87-c55a-fb6d-1c016bf04d59@FreeBSD.org> References: <32084.1474872154@segfault.tristatelogic.com> <74ed7019-cb87-c55a-fb6d-1c016bf04d59@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 26 Sep 2016 10:31:02 +0200 Matthew Seaman <matthew@FreeBSD.org> wrote: [...] > > > > https://censys.io/ > > [...] > > Hmmm... their TLS certificate is issued by 'StartCom Class 1 DV Server > CA' This is a CA that prominently advertizes free SSL certificates, > but otherwise looks like it charges just like any other CA. > See: http://www.startssl.com/ No idea if this CA is any good but > there's nothing to suggest any wrong doing just from their site. Just an FYI regarding StartCom: Mozilla is suspending their CA for one year (and quite likely forever, it's unlikely they'll be able to meet the requirements for reactivation). Lots more info here in Mozilla's investigation report: https://docs.google.com/document/d/1C6BlmbeQfn4a9zydVi2UvjBGv6szuSB4sMYUcVrR8vQ/preview -- PGP: 28CC 9078 8358 CE2D 6824 A5BC 2DB2 CD24 5BE7 8F06
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20160928084027.20ca33f2>