"All WoSign and StartCom certificates issued after October 21 this year will be untrusted"
As long as they don't backdate their certificates...again!
Google is set to jettison certificate authorities WoSign and StartCom next year in a move that shores up wider efforts to neuter the two companies. Mountain View's move follows public announcements by Mozilla and Apple that they would not trust the authorities' certificates after the pair the pair incorrectly issued base …
Why do we have to wait for an update that clears these certs. There should be a zero tolerance policy for munging certificate properties. I just deleted both Wocom and StartCom from my certificate store in Seamonkey and I will follow up with Firefox in a few minutes. I wish Mozilla had sent out an update right away as they did with the Diginotar case.
If they knew that Wocom was handing out server side certs that were backdated in August, why are they only untrusting those issued after October 21st? I realize that an orange-haired idiot is causing a lot of global drama, but... Dear Reg. these questions still have to be asked?