[Project_owners] Wildcard certificate

Michael Vincent van Rantwijk mv_van_rantwijk at yahoo.com
Fri Jun 29 11:41:46 PDT 2007


David Boswell wrote:
>> I was under the impression that this was the plan already, especially
> 
>> after reading Eric's reply:
> 
> In my opinion, all web-based tools on the site that require a login
> should be secure (bugzilla, mailman, etc.) and based on comments from
> our sysadmins that may be possible with just a cert for www.mozdev.org.
>  If there is a reason to get a wildcard cert then that's something we
> can do, but we need to make an argument for doing that.

Okay, so what about MITM attacks for updates from mozdev.org?



More information about the Project_owners mailing list