Accountapprovers, antispam, confirm, emeritus
4,925
edits
Changes
Move validation delegation to "forbidden"
* [https://blog.mozilla.org/security/2014/09/23/phasing-out-certificates-with-sha-1-based-signature-algorithms/ Security Blog Post Regarding SHA-1 Based Signature Algorithms]
== Potentially Problematic Practices =Delegation of Domain / Email Validation to Third Parties === This is forbidden by the Baseline Requirements, section 1.3.2.
=== Allowing External Entities to Operate Subordinate CAs ===
