Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA

To: Josh Triplett <josh@joshtriplett.org>, 639744@bugs.debian.org
Subject: Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
From: Raphael Geissert <geissert@debian.org>
Date: Mon, 29 Aug 2011 20:09:02 -0500
Message-id: <[🔎] 201108292009.05392.geissert@debian.org>
Reply-to: Raphael Geissert <geissert@debian.org>, 639744@bugs.debian.org
In-reply-to: <[🔎] 20110829210357.26233.13731.reportbug@leaf>
References: <[🔎] 20110829210357.26233.13731.reportbug@leaf>

On Monday 29 August 2011 16:03:57 Josh Triplett wrote:
> Whatever resolution Mozilla and others end up with (revocation of the
> certificate or of the entire CA), ca-certificates will likely need to
> do the same.

FWIW, individual certificates can't be "revoked" in ca-certificates.
Shipping revocation lists is useless too.

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Reply to:

Follow-Ups:
- Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
  - From: Josh Triplett <josh@joshtriplett.org>

References:
- Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
  - From: Josh Triplett <josh@joshtriplett.org>

Prev by Date: Bug#639744: Followup from Mozilla
Next by Date: Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
Previous by thread: Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
Next by thread: Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
Index(es):
- Date
- Thread