The reason I would like a client certificate solution that worked (even if it wa... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		joshuaellinger on July 11, 2013 \| parent \| context \| favorite \| on: Why is nobody using SSL client certificates? The reason I would like a client certificate solution that worked (even if it was a malware target) is that I could reject all web traffic to my applications if they came in without a cert. It would decrease my public footprint dramatically. I don't mind approving a user once per device. We've got to set them up anyway.

marshray on July 11, 2013 [–]

Use client certs then? Why do you feel current solutions don't work?

joshuaellinger on July 12, 2013 | [–]

Setup is still too painful even with direct support.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact