[openssl-dev] [openssl.org #3621] Support legacy CA removal, ignore unnecessary intermediate CAs in SSL/TLS handshake by default

Yuhong Bao via RT rt at openssl.org
Mon Dec 29 19:10:11 UTC 2014

Previous message: [openssl-dev] [openssl.org #3621] Support legacy CA removal, ignore unnecessary intermediate CAs in SSL/TLS handshake by default
Next message: [openssl-dev] Circumstances cause CBC often to be preferred over GCM modes
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

As a warning, the Equifax root expires in August 2018 and hopefully will removed from Mozilla soon. Right now GeoTrust is still promoting the use of their GeoTrust to Equifax cross-certificate, and they do issue four year certificates.

Previous message: [openssl-dev] [openssl.org #3621] Support legacy CA removal, ignore unnecessary intermediate CAs in SSL/TLS handshake by default
Next message: [openssl-dev] Circumstances cause CBC often to be preferred over GCM modes
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-dev mailing list