On 01/04/2016 10:18 AM, Eric Rescorla wrote: > I believe you are confusing two different things. > > 1. Whether the browser supports SHA-1 certificates at all. > 2. Whether the browser supports SHA-1 certificates signed after Jan 1 2016 > (The CA/BF Baseline Requirements forbid this, so no publicly valid > certificate > should fall into this category). > > It's not clear to me how IE/Edge are behaving with respect to #2.
Sorry, I wasn't clear. What I was saying was * The definitive statements I've found from/about MS about SHA1 on the web *only* mention your point #1 (and do not mention anything about #2). * My one data point, from this affected user, indicates that IE still works just fine with freshly-minted SHA1 certs. So, in the absence of statements about #2 (and in the presence of proof otherwise), I see no reason to think Microsoft is taking action on that point. ~Daniel _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
