Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
billyhoffman
on July 10, 2017
|
parent
|
context
|
favorite
| on:
Taking control of all .io domains with a targeted ...
Depends, but for DV certificates, most likely. Certificate Transparency could/would help alert the original site if that was the case.
finnn
on July 10, 2017
[–]
yes, but HTTPS + HSTS would not enforce a certain validation level, eg you can't enforce EV certs only in HSTS (as far as I know), so a DV cert would be sufficient
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
