[HTTPS-Everywhere] Sites with incomplete chains
Alexander Buchner
alexander.buchner at posteo.de
Thu Apr 23 02:40:50 PDT 2015
What should we do with sites with incomplete certificate chains?
I just noticed that my Firefox will download extra certificates on the
fly (and so doesn't complain about the missing certificate(s)) while the
Firefox instance that starts by calling ./test.sh --justrun will not
(and perhaps neither other clients).
Should we write a rule for such a site (e.g. bundesrat.de) or should
their implementation be regarded as broken?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <https://lists.eff.org/pipermail/https-everywhere/attachments/20150423/b0bc9b39/attachment.sig>
More information about the HTTPS-Everywhere
mailing list