State clearly and upfront that a specific root cert must be trusted

polhenarejos / acme_email

ACME Email Client for EmailReply-00 Challenge

https://acme.castle.cloud

GNU General Public License v3.0

46 stars 7 forks source link

State clearly and upfront that a specific root cert must be trusted #18

Closed DDvO closed 2 years ago

DDvO commented 2 years ago

I have not been able to get a certificate yet due to technical trouble, but as far as I understand the service meanwhile, the certs produced are not verifiable using a vanilla trust store (by Thunderbird, Windows, Android, etc.), right?

polhenarejos commented 2 years ago

Probably true. We employ our CA. So, in order to use our deployed certificates, the CA shall be trusted.