Y
Hacker News
new
|
ask
|
show
|
jobs
by
jackalope
4224 days ago
There is no reason for the CA to ever see the private key. All they need is a CSR. This approach is fundamentally broken.