|
|
|
|
|
|
by icebraining
4733 days ago
|
|
|
Proxy replays? How so? As for cert validation / forged certs, they're only problematic because we want to authenticate a server we have never talked to before. With clients certs, the same doesn't apply: the server just needs to ensure the client is the same as the one who registered the account, so there's no need for the whole CA enchilada. |
|
|