In recent weeks I've spoken a lot about the Debian flaw that enables the creation of weak SSL keys. One thing you may be aware of is that VeriSign suspended charging for replacement of SSL Certificates through the end of June to facilitate the replacement of these certificates. I'm happy to state that due to the strongly positive reactions toward this policy that we've received from our customers, VeriSign has extended this free replacement offer through the end of July. While we've seen good progress in the replacement of weak Debian certs, with over a million active certificates to look at, you can imagine it requires a little time to make our way through the whole bunch of them. So to facilitate the continued replacement of the existing weak certificates, we're keeping free reissuance alive for a while longer. ...
Anytime
