科技回声

I pin my TLS certificates with the excellent Certificate Patrol browser plugin because otherwise it is just not safe. I just noticed that the certificate of HN changed from Comodo to Entrust, but saw no prior warning. I don't expect it to be a hack, but can someone confirm? (obviously I would have a problem trusting information posted back here as I'm questioning the potential veracity of the whole domain, but I'm willing to take the bet that I'm not really that interesting to mess around with)

Why would there have to be a prior warning? Certificates are re-issued all the time and sometimes a customer decides to move their business to a new provider.<p>SSLshopper has a neat little certificate chain checker:<p><a href="http://www.sslshopper.com/ssl-checker.html#hostname=news.ycombinator.com" rel="nofollow">http://www.sslshopper.com/ssl-checker.html#hostname=news.yco...</a>

> because otherwise it is just not safe<p>this is just not true

Cloudflare. On and off.

> because otherwise it is just not safe<p>this is just not true

Cloudflare. On and off.

Certificate Authority change at HN from Comodo to Entrust. No warning?

3 条评论

Certificate Authority change at HN from Comodo to Entrust. No warning?

3 条评论