Yes, this is going to further insecure the Internet by forcing people back to th... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

_pghu on Sept 5, 2014 | parent | context | favorite | on: Gradually sunsetting SHA-1

Yes, this is going to further insecure the Internet by forcing people back to the for-pay CAs, unless Startcom manages to fix it basically instantly and forces everyone to get new certs, very very quickly.

Dylan16807 on Sept 5, 2014 [–]

Nope, free certificates don't have expiration dates in 2016 or 2017 or later.

sandstrom on Sept 5, 2014 | [–]

As I understood it any certificate in the chain (except the root) is considered. Validity is usually longer for intermediate certificates [such as the Starcom intermediary, quoted above].

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact