| ▲ | bawolff 3 days ago | |||||||
> Issuing a Google certificate is a good way to get your whole CA killed. Surely what happened here is a good way to get your CA killed? The linked bug seems pretty bad. | ||||||||
| ▲ | tptacek 3 days ago | parent | next [-] | |||||||
Less clear on that. Bugs happen. I'm not an expert on browser root policies. | ||||||||
| ||||||||
| ▲ | agwa 3 days ago | parent | prev [-] | |||||||
Historically, singular domain validation bugs have not killed CAs. | ||||||||