More

kedihacker · 2026-02-10T12:50:25 1770727825

They can do this with certificate transparency other wise CA can sign whatever date they want. But if they collude with CT that can issue rouge certificates for targeted attacks.

throw_a_grenade · 2026-02-10T13:36:16 1770730576

Yes, that's all right, there's already a requirement that they submit to one Google CT log and one non-Google CT log. They thought about it already. The playbook I mentioned they've been rehearsing contains specific threat against backdating certs, they say they'll distrust immediately if they detect, and they have means of detecting backdating on significant scale (esp. for LE, where they submit 100% issued certs, not just the subset that is intended for consumption with Chrome).

kedihacker · 2025-12-18T14:04:20 1766066660

Well you need to stop them from getting incorporated into its training data

kedihacker · 2025-10-20T08:54:22 1760950462

Only us east 1 gets new services immediately others might do but not a guarantee. Which regions are a good alternative

kedihacker · 2025-10-07T06:39:43 1759819183

Well letting tb evolve over time and infect everyone is a lot more dangerous

kedihacker · 2025-10-06T09:22:41 1759742561

Well microcontrollers can prevent you from repairing your own device with DRM and secure enclaves

kedihacker · 2025-10-05T12:36:11 1759667771

They have placed different data centers very close so it might not be enough

nsndndkddk · 2025-10-05T12:55:04 1759668904

Guess that is why bigger clouds cost more. Partly! No free lunch.

chpatrick · 2025-10-05T14:01:27 1759672887

Or you can use a more reliable host like Hetzner.

type0 · 2025-10-05T15:28:40 1759678120

it is reliable until they decide to close your account for no reason

johnmaguire · 2025-10-05T17:02:22 1759683742

I hear stories like this on every provider.

kedihacker · 2025-09-12T06:27:51 1757658471

Google doesn't know it only sees a happy user

kedihacker · 2025-09-04T13:02:15 1756990935

It would be perfect upsell for Atlassian because of their products abysmal performance of their product.

kedihacker · 2025-08-25T10:48:14 1756118894

Well it can be bypassed by setting up a new company with the same name. Someone had done that against stripe I remember.

TRiG_Ireland · 2025-08-28T22:03:35 1756418615

EV certs show the company name and the country, for disambiguation, on the assumption that you cannot have two companies of the same name in the same country. However, this is not true in the USA, where names are unique only within each state.

That's how someone got an EV cert for Stripe (USA).

kedihacker · 2025-08-25T10:45:24 1756118724

Support would be a big part of the enterprise and smaller ones pie but at 47 days everything would be integrating acme protocol so rough times ahead