|
|
|
|
|
|
by mrbabbage
3310 days ago
|
|
|
> - Public-Key-Pins: we are very unlikely to deploy this. Whenever we have to change our certificates it makes life extremely dangerous for little benefit. Is it possible to pin to your CA's root instead of to your own certificate? That would make rotating certs from the same CA easy but changing CAs hard (but changing CAs is already a big undertaking for big orgs). Also, I see your five minute HSTS header ;) |
|
|