-
Notifications
You must be signed in to change notification settings - Fork 193
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add revoked intermediate subdomain #136
Comments
Hmm, revoked certs are tricky, and intermediates doubly so. How did https://revoked-intermediate.serverhello.com/ get a cert revoked intermediate, and what's the story behind the revocation? Also, revocation on its own usually doesn't trigger a failure (with notable exceptions, e.g. EV in Chrome and |
This cert was issued after intermediate revocation but before SHA1 was disallowed. Now all I can come up with is pinging @robstradling, whether it's possible to issue SHA2 from SHA1 discounted intermediate, or create and then revoke new intermediate. The second option would be much better, considering it would be the first intermediate in chain. My setup makes use of cross-signing. |
+1 |
See https://revoked-intermediate.serverhello.com/ for an example.
The text was updated successfully, but these errors were encountered: