Re: [Fed-Talk] Apple's Rogue DigiNotar CA mitigation?
Re: [Fed-Talk] Apple's Rogue DigiNotar CA mitigation?
- Subject: Re: [Fed-Talk] Apple's Rogue DigiNotar CA mitigation?
- From: Paul Suh <email@hidden>
- Date: Wed, 07 Sep 2011 01:33:21 -0400
Folks,
I updated the installer and docs on my page. It now handles the Extended Validation certificates case as well.
Please spread the word widely.
--Paul
Paul Suh
email@hidden
(240) 672-4212
http://ps-enable.com/
On Sep 2, 2011, at 5:55 PM, Paul Suh wrote:
> Folks,
>
> I've updated the tools mpkg on my web page so that it will:
>
> 1) Delete the "DigiNotar Root CA" and "DigiNotar Root CA G2" certificates.
>
> 2) Import the "DigiNotar Services 1024 CA" and "DigiNotar Root CA" intermediate certificates signed by Entrust and mark them as not trusted.
>
> 3) Import the "DigiNotar PKIoverheid CA Overheid en Bedrijven" and "DigiNotar PKIoverheid CA Organisatie G2" signed by the Dutch national government CA and mark them as not trusted.
>
> This is ready for deployment on Snow Leopard systems. It will work but does not apply all trust settings on Lion. I will be working on updating the text on the page to give more details.
>
> Spread the word.
>
>
> --Paul
>
>
> Paul Suh
> email@hidden
> (240) 672-4212
> http://ps-enable.com/
>
>
>
>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden