I know this isn't fully related to the blog, but I think I found my favorite Sandstorm contributor: <a href="http://i.imgur.com/nrlbY3f.jpg" rel="nofollow">http://i.imgur.com/nrlbY3f.jpg</a>
>To solve this, Sandcats issues certificates valid for only seven days.<p>I'm not sure I'm convinced that the primary motivation for the 7-day certs was users security.
Probably not a top concern for users, but this does look like it would be really difficult to use with HTTP Public Key Pinning unless Sandstorm were also keeping the pinning TTLs pretty short - which defeats the purpose.<p>More info here if anyone's interested in HPKP: <a href="https://scotthelme.co.uk/hpkp-http-public-key-pinning/" rel="nofollow">https://scotthelme.co.uk/hpkp-http-public-key-pinning/</a>