cacert-sysadm AT lists.cacert.org
Subject: CAcert System Admins discussion list
List archive
- From: "Nick Bebout" <nick AT bebout.net>
- To: cacert-board AT lists.cacert.org
- Cc: cacert-sysadm AT lists.cacert.org
- Subject:
- Date: Sat, 12 Feb 2011 17:51:49 -0600
- Authentication-results: lists.cacert.org; dkim=pass (1024-bit key) header.i= AT bebout.net; dkim-asp=none
- Importance: Normal
Mozilla has announced that they will disable the use of MD5 as a hash
algorithm in all of their products on June 30, 2011. Our class 3
intermediate root uses MD5, thus I believe we should stop issuing
certificates off of that root as soon as possible. I have filed the
following motion.
Nick
m20110212.1
Discontinue issuing certificates from Class 3 root
RESOLVED, that effective as of the date of the close of this vote (or as
soon as this change may be implemented), CAcert shall no longer issue
certificates from the Class 3 root.
Background information:
Our Class 3 root uses MD5 as a hash algorithm.
June 30, 2011 Mozilla will stop accepting MD5 as a hash algorithm for
intermediate and end-entity certificates. After this date software
published by Mozilla will return an error when a certificate with an
MD5-based signature is used.
Due: 2011-02-19 23:59:59 UTC
- [no subject], Nick Bebout, 02/12/2011
- Re:, Wytze van der Raay, 02/14/2011
- Re: (something about roots), Ian G, 02/14/2011
- Re: (something about roots), dirk astrath, 02/14/2011
- Re: (something about roots), Guillaume ROMAGNY, 02/14/2011
- Re: (something about roots), dirk astrath, 02/14/2011
- Re: (something about roots), Ian G, 02/14/2011
- Re: MD5, Philipp Gühring, 02/16/2011
- Re:, Wytze van der Raay, 02/14/2011
Archive powered by MHonArc 2.6.16.