|
|
|
|
|
|
by MichaelGG
4792 days ago
|
|
|
>with this sort of trickery you could get a "domain control validated" https certificate too! I don't understand why HSTS didn't allow some sort of pinning, or the ability to specify a certain kind flag in the certificate is required (like EV). |
|
|