Slacker News Slacker News logo featuring a lazy sloth with a folded newspaper hat
  • top
  • new
  • show
  • ask
  • jobs
Library
← Back to context

Comment by tgsovlerkhgsel

3 years ago

Yes, assuming someone captured the malicious certificate and checked. Which would have happened in this case now (after someone forgot to renew), but likely not before.

Browsers would happily accept it and IIRC they don't check against the logs.

1 comment

tgsovlerkhgsel

Reply

aaomidi  3 years ago

Yep - this is all because of the delayed insertion into the CT tree :(

Slacker News

Product

  • API Reference
  • Hacker News RSS
  • Source on GitHub

Community

  • Support Ukraine
  • Equal Justice Initiative
  • GiveWell Charities