• solrize@lemmy.world
    link
    fedilink
    English
    arrow-up
    31
    ·
    1 month ago

    Lame. 45 days? 10 days for DCV? How common are exploits involving old certificates anyway? And automated cert management is just another exploit target. Do they seriously think an attacker who pwns a server can’t keep the automatic renewals running?

    • 0x0@programming.dev
      link
      fedilink
      English
      arrow-up
      33
      ·
      1 month ago

      The solution, according to Sectigo’s Chief Compliance Officer Tim Callan, is to automate certificate management — unsurprising considering the firm sells software that does just this.