Y
Hacker News
new
|
ask
|
show
|
jobs
by
sigio
1126 days ago
A CAA dns record will most likely prevent tbat, just set it to your preferred CA tgat doesn't do mail-based validation.
1 comments
kevincox
1126 days ago
This doesn't help if your preferred CA does mail-based validation. The attacker can just use the same CA that you do.
link