Hacker News new | ask | show | jobs
by zeroxfe 88 days ago
Expiries are a defence-in-depth that exist primarily for crypt hygiene, for example to protect from compromised keys. If the private key material is well protected, the risk is very low.

However, an org (particularaly a .mil) not renewing its TLS certs screams of extreme incompetence (which is exactly what expiries are meant to protect you from.)
1 comments
jp191919 88 days ago
>screams of extreme incompetence

Not unheard of with the military

link
cozzyd 88 days ago
Precision lethality, not certificate renewality.
link
hoherd 88 days ago
Let's not kid ourselves, the lethality isn't even that precise.
link
crote 88 days ago
It is quite precise, it just isn't accurate.

On the one hand, they can do a perfect triple-tap. On the other hand, the perfect triple-tap hit a girls' school rather than a military base...

link
rectang 88 days ago
"Why not neither?"
link