Symantec is an unbelievably bad certificate authority.
-
-
Even if the certs were only for testing, if a system allows employees to bypass authorization, it will allow attackers to bypass it too.
-
Google responded by requiring all new Symantec certificates be publicly logged to Certificate Transparency.
- 7 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.