e-Guven as well https://blog.mozilla.org/security/2015/04/27/removing-e-guven-ca... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

mattkrea on Aug 29, 2015 | parent | context | favorite | on: Windows Certificate Manager does not display the c...

e-Guven as well

https://blog.mozilla.org/security/2015/04/27/removing-e-guve...

edit: e-Guven is being removed "due to insufficient and outdated audits" and not a compromise (Couldn't reply below).

yuhong on Aug 29, 2015 [–]

e-Guven was never compromised, it just still uses outdated practices like issuing directly from the root and expires in 2017 anyway. I once even caught an 1024-bit DSA cert being issued from this root by mistake.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact