WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2024 Poal.co

644

Archive: https://archive.today/gvQHs

From the post:

>This year we will continue to pursue our commitment to improving the security of the Web PKI by introducing the option to get certificates with six-day lifetimes (“short-lived certificates”). We will also add support for IP addresses in addition to domain names. Our longer-lived certificates, which currently have a lifetime of 90 days, will continue to be available alongside our six-day offering. Subscribers will be able to opt in to short-lived certificates via a certificate profile mechanism being added to our ACME API.

Archive: https://archive.today/gvQHs From the post: >>This year we will continue to pursue our commitment to improving the security of the Web PKI by introducing the option to get certificates with six-day lifetimes (“short-lived certificates”). We will also add support for IP addresses in addition to domain names. Our longer-lived certificates, which currently have a lifetime of 90 days, will continue to be available alongside our six-day offering. Subscribers will be able to opt in to short-lived certificates via a certificate profile mechanism being added to our ACME API.
[–] 2 pts

Fucking 6 day certs...why not 6 hours? 6 minutes? 6 seconds? Hell, why issue a cert at all if you can't trust it for more than a day?

[–] 1 pt

I'm fairly certain the future of certs is a constantly rotating encryption key of some sort that you sync with... something. Who knows. All I know is that will a total bitch to implement in anything.

[–] 1 pt

Yes it will.

[–] 1 pt

Certs are so much of a fucking scam I'd bet a jew came up with the idea for them. SSL certs are an almost TEN BILLION dollar market and they constantly tell you how they're junk yet every site is required to have one or they're inaccessible or get painted with half a dozen warning notices.

Is the public really getting ten billion dollars worth of value out of this shit?