Website operators do not need to worry about the upcoming #CertificateTransparency deadline. Your CA should be taking care of it for you.
GlobalSign, Comodo, Let's Encrypt, DigiCert, and Amazon are all in compliance already.https://twitter.com/rmhrisk/status/989521193463156736 …
-
Show this thread
-
That said, if your CA lets you opt out of
#CertificateTransparency, don't do it unless you are happy with your site not working in Chrome.1 reply 0 retweets 3 likesShow this thread -
Replying to @__agwa
Ooh, who lets you opt out? We have http://invalid-expected-sct.badssl.com , but it would be nice to have source of certs for http://no-sct.badssl.com going forward. cc
@aprilmpls3 replies 0 retweets 3 likes
Replying to @lgarron @aprilmpls
DigiCert and ACM, though ACM won't work for http://badssl.com because their certs only work with AWS infra.
9:23 AM - 27 Apr 2018
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.