Mozilla dev here! We're seeing a lot of complaints about this since we distrusted Symantec certificates on our Firefox Nightly 63 channel a few days ago. Here's a reminder that this change will be...
Mozilla dev here!
We're seeing a lot of complaints about this since we distrusted Symantec certificates on our Firefox Nightly 63 channel a few days ago. Here's a reminder that this change will be released in 63, and is also being coordinated with other browser makers.
If you or someone you know is still using Symantec certificates, now is the time to dump those for some new ones!
Finally, if you're a web dev, I highly recommend that you regularly test your site against the pre-release channels of the various browsers. Too many sites get caught with their pants down when a browser change hits release, when they could have been prepared for it by testing against Firefox Nightly and Chrome Canary.
Let's Encrypt should be the default choice. Free and automated. If you need something LE doesn't offer, such as Extended Validation, I've heard good things about DigiCert but haven't personally...
Let's Encrypt should be the default choice. Free and automated.
If you need something LE doesn't offer, such as Extended Validation, I've heard good things about DigiCert but haven't personally used them. They sign Amazon's TLS cert, which I take as a significant vote of confidence.
A word of warning about DigiCert: They picked up the remnants of the Symantec CA after Symantec was announced to be distrusted. New DigiCert certs should be okay, but if you have existing certs,...
A word of warning about DigiCert: They picked up the remnants of the Symantec CA after Symantec was announced to be distrusted.
New DigiCert certs should be okay, but if you have existing certs, they might be affected. Here is DigiCert's announcement about this.
Mozilla dev here!
We're seeing a lot of complaints about this since we distrusted Symantec certificates on our Firefox Nightly 63 channel a few days ago. Here's a reminder that this change will be released in 63, and is also being coordinated with other browser makers.
If you or someone you know is still using Symantec certificates, now is the time to dump those for some new ones!
Finally, if you're a web dev, I highly recommend that you regularly test your site against the pre-release channels of the various browsers. Too many sites get caught with their pants down when a browser change hits release, when they could have been prepared for it by testing against Firefox Nightly and Chrome Canary.
Let's Encrypt should be the default choice. Free and automated.
If you need something LE doesn't offer, such as Extended Validation, I've heard good things about DigiCert but haven't personally used them. They sign Amazon's TLS cert, which I take as a significant vote of confidence.
A word of warning about DigiCert: They picked up the remnants of the Symantec CA after Symantec was announced to be distrusted.
New DigiCert certs should be okay, but if you have existing certs, they might be affected. Here is DigiCert's announcement about this.