-
community.letsencrypt.org/t/2018-01-09-issue-with-tls-sni-01-and-shared-hosting-infrastructure/49996 Let's Encrypt hell continues 😂Permalink On twitter.com
♻️ 4 Retweets
❤️ 6 Favorites
Mood -3 🙁
-
For information, I remind community.letsencrypt.org/t/support-for-https-only-with-http-01-challenge/15134 which leads to removal http-01 over HTTPS because of "bad provider behaviour".Permalink On twitter.com
♻️ 1 Retweets
❤️ 1 Favorite
Mood -3 🙁
-
After more thought, I bet for a doomed tls-sni-01. "Users have the ability to upload certificates for arbitrary names without proving domain control." But validation is **always** on an invalid domain (*.acme.invalid), so you can't prove ownership of the **validating** domainPermalink On twitter.com
Mood +1 🙂
-
when deploying **invalid** SAN certificate…On twitter.com
Mood 0