Only three of those incidents were described by LE as resulting in misissuance u... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		schoen on Jan 29, 2019 \| parent \| context \| favorite \| on: I exploited TLS-SNI-01 issuing Let's Encrypt SSL-c... Only three of those incidents were described by LE as resulting in misissuance under its CPS: https://community.letsencrypt.org/t/blocklist-incident-novem... https://community.letsencrypt.org/t/2018-05-18-caa-tag-value... https://community.letsencrypt.org/t/caa-check-incident-decem... Of these, I believe that none were issued to entities that didn't actually control or operate the sites described by the certificates.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact