:jason - Could you help us with this one?
Status: UNCONFIRMED → NEW
Ever confirmed: true
Keywords: sec-low, wsec-impersonation
Would is also be possible to have an audit done of cloud service domains for this particular issue on common domains (GitHub Pages, Heroku, Akamai, Edgecast, etc.) so we can sort these out all at once?
Arne: many thanks for the submission, we're getting the right people involved to sort this out. Thanks!
sumo-cdn.prod.mozaws.net is valid and currently in use. Arne can you release it so that we can add it to our cloudfront account?
Hi, I've just released it, it should become available for you anytime soon. Arne
sumo-cdn.prod.mozaws.net is now configured as an Alias in our Cloudfront account.
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
bounty covered in bug 1304785
Flags: sec-bounty? → sec-bounty-
You need to log in before you can comment on or make changes to this bug.