undefined | Better HN

0 pointsdelinka9y ago0 comments

"introduced into a Certificate"

They didn't introduce any errors _into_ a certificate. They affected the certificate chain, but not the certificate directly. I'm certain this is how their own lawyers view this.

0 comments

3 comments · 2 top-level

0x09y ago· 1 in thread

If THIS isn't covered by warranty, what would it take to invoke this warranty?

Btw I've always thought these SSL insurance warranties sounded like a scam.

nathanaldensr9y ago

It seems likely we'll find out if they are, at least for GlobalSign's.

sofaofthedamned9y ago

This is going to get hilariously legal. A certificate from GlobalSign or anybody else is the product of the chain, if the chain isn't there and the cert isn't valid it's no more valid than a self-signed one.

Tell me again, anybody, why we trust these people?

j / k navigate · click thread line to collapse