The account is the same as you create in any acme client. I don't see potential for a reverse lookup.

I think the previous post is talking about a search that will find the sibling domain names that have obtained certificates with the same account ID. That is a strong indication that those domains are in the same certificate renewal pipeline, most likely on the same physical/virtual server.

▲

mschuster91 2 hours ago | parent [-]

Run ACME inside a Docker container, one instance (and credentials) for each domain name. Doesn't consume much resources. The real problem is IP addresses anyway, CT logs "thankfully" feed information to every bad actor in real time, which makes data mining trivially easy.

▲

cortesoft 11 minutes ago | parent [-]

you dont even need a docker container to do that.

	▲	mschuster91 9 minutes ago \| parent [-]
		Agreed, that's just a personal preference thing of me. Harder to mess up and easier to route.