I just want to talk for a minute about the upcoming Symantec certificate-distrust action that's coming due in a few weeks. This isn't a company policy statement, but I want to mention some underappreciated implications.
Debian gets its trust store from NSS' certdata.txt. Per https://wiki.mozilla.org/CA/Additional_Trust_Changes#Symantec … no date has been set for removing the website trust bit from Symantec roots, which means Debian will continue trusting Symantec certs even after 63 is released.
-
-
Even when the date gets confirmed, I expect widespread adoption to happen slowly, across standard release schedules, not everywhere and all at once. My concern is that this will make breakage harder to understand or resolve.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.