(In reply to comment #91)
> > Litmus testcase has been added -- please review:
> > https://litmus.mozilla.org/show_test.cgi?id=15365
>
> This test presupposes that https://kuix.de:9449/ will be up forever. Since the
> bogus test cert is keyed to that site, we cannot move the testcase to our QA
> server.
Correct. As far as I understand it, the purpose is to test a certificate which has been revoked by the CA. Is there a way that we can spoof a revoked certificate? If we can, then we could create a test on the QA server...
(In reply to comment #91) /litmus. mozilla. org/show_ test.cgi? id=15365 /kuix.de: 9449/ will be up forever. Since the
> > Litmus testcase has been added -- please review:
> > https:/
>
> This test presupposes that https:/
> bogus test cert is keyed to that site, we cannot move the testcase to our QA
> server.
Correct. As far as I understand it, the purpose is to test a certificate which has been revoked by the CA. Is there a way that we can spoof a revoked certificate? If we can, then we could create a test on the QA server...