Closed Bug 1312150 Opened 8 years ago Closed 8 years ago

CCADB entries generated 2016-10-21

Categories

(Core :: Security Block-lists, Allow-lists, and other State, defect)

Product:
Core
Component:
Security Block-lists, Allow-lists, and other State
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: mgoodwin, Assigned: eviljeff)

References

Details

Attachments

(2 files)

Blocklist entries for addition to the AMO cert blocklist
(deleted), text/plain
kwilson
: review+
mwobensmith
: review+
Details
sample revocations.txt for compat testing
(deleted), text/plain
mwobensmith
: review+
Details
Attached is a list of the cert blocklist items to clear (most of) the backlog of revoked intermediates. Once we have approval from the Kathleen and Matt, it'd be good if we could have these entries added to AMO.
Attachment #8803588 - Flags: review?(mwobensmith)
Attachment #8803588 - Flags: review?(kwilson)
Attachment #8803589 - Flags: review?(mwobensmith)
Comment on attachment 8803588 [details] Blocklist entries for addition to the AMO cert blocklist I confirm that each blocklist entry corresponds to a revoked intermediate certificate that should be added to OneCRL.
Attachment #8803588 - Flags: review?(kwilson) → review+
Comment on attachment 8803589 [details] sample revocations.txt for compat testing Canary run turns up no compatibility errors for these blocklisted items.
Attachment #8803589 - Flags: review?(mwobensmith) → review+
Attachment #8803588 - Flags: review?(mwobensmith) → review+
Similarly to bug 1267648, can we have the following snippet run in django console on prod (better try on stage/dev first): https://gist.github.com/eviljeff/d8d7fdb36c1d91e60939625948f8f786 with the first attachment download to be certs.txt (Note it's not the same code as 1267648 because the format of the file is different)
Flags: needinfo?(jthomas)
I've ran this on stage, no errors. Seems to show up here https://blocklist.allizom.org/blocklist/3/x/x/x/, can you please verify before I run this on prod?
lgtm
Done on prod.
Flags: needinfo?(jthomas)
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Blocks: onecrl-meta
Summary: Add certificate blocklist entries to clear the revoked intermediate backlog → CCADB entries generated 2016-10-21

Moving bug to Core::Security Block-lists, Allow-lists, and other State.

Component: Blocklist Policy Requests → Security Block-lists, Allow-lists, and other State
Product: Toolkit → Core
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: