|
|
|
|
|
|
by agwa
696 days ago
|
|
|
Yeah, that would be a good idea. Though sometimes the CA needs to know more than just the validation method to determine if a certificate should be revoked, and it's not practical to stuff it all in an extension (e.g. this recent GoDaddy issue which required examining past CAA queries: https://bugzilla.mozilla.org/show_bug.cgi?id=1904748). |
|
|