Hacker News new | past | comments | ask | show | jobs | submit login

Hm, how is that compatible with Startcom's policy of charging for revocation?



Mozilla should probably add 'charging for revocation' to their list of problematic practices (required to be included in Firefox). Not that revocating compromised certificates isn't already required, but just that some behavior by poor CAs needs to be explicitly pointed out: https://wiki.mozilla.org/CA:Problematic_Practices


What? Revoking expired certificate is not required, and would be a completely useless thing to do, bloating CRLs for no gain whatsoever.


Sorry, my bad. I wrote 'revoking expired certificates' rather than 'revoking compromised certificates'. Now fixed.


Good question. Maybe you can skip the fee by posting your private key to pastebin and send them the link? :P Might not leave you with an account in good standing with them though ;)


That has been tried before: https://web.archive.org/web/20140412085458/https://revokame....


Hah. So sslip.io should went with Startcom instead of Comodo.


It isn't.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: