This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.
If you don't like tracking this as a bug, feel free to resolve this as INVALID. 1) We need to ask DreamHost when they plan upgrading their VPS customers. All Shared customers have been upgraded, but VPS customers still have a pretty shitty setup: https://www.ssllabs.com/ssltest/analyze.html?d=whatwg.org https://www.ssllabs.com/ssltest/analyze.html?d=html.spec.whatwg.org 2) We should use StartSSL's intermediate certificate that uses SHA-2: https://www.startssl.com/certs/class2/sha2/pem/sub.class2.server.sha2.ca.pem
Assuming I didn't screw everything up, I just updated all 31 domains to use the same certs including that intermediate cert. Feel free to contact them. :-)