In article <199509231919.MAA01818@infinity.c2.org>, sameer@c2.org (sameer) writes:
What exactly is the point of this? We have:
Is Netscape going to cover the cost of getting the new keys that the servers generate signed and certified by Versign? Is netscape going to tell its customers that they need to regenerate their keys and get new certificates?
I'm not sure what exactly you mean by "cover the cost". Our server customers WILL NOT have to pay verisign for new certificates. We will tell all of our customers to generate new keys and get new certificates ASAP. We are putting the version number in new certificate requests so that verisign can reject requests from people who don't have the new version of the key generator. Server operators will also be able to set up their servers to detect unpatched clients and redirect them to a page that will allow them to download the patch. --Jeff -- Jeff Weinstein - Electronic Munitions Specialist Netscape Communication Corporation jsw@netscape.com - http://home.netscape.com/people/jsw Any opinions expressed above are mine.