Y
Hacker News
new
|
ask
|
show
|
jobs
by
phicoh
745 days ago
If you set the CAA correctly, then letsencrypt will limit validation to the dns method. Together with DNSSEC that is enough to prevent issuing certificates in case of a route hijack.