Y
Hacker News
new
|
ask
|
show
|
jobs
by
higherpurpose
4426 days ago
Maybe they should just be advised to use PFS/ECDHE instead (which should be done anyway), and it would solve this problem by itself.
2 comments
sdevlin
4426 days ago
That would not solve the problem of active man-in-the-middle attacks.
link
mobiplayer
4426 days ago
Yes, even renewing your keys and certs doesn't mean any previous communication is not compromised :)
link