Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
phamilton
on Sept 20, 2017
|
parent
|
context
|
favorite
| on:
Equifax linked customers to my fake phishing versi...
That would require ssl certs to be shared to the agency.
Agreeing with everyone though, it's a wrong reason, but I can fathom why someone would do it.
tony101
on Sept 20, 2017
[–]
No, the outside agency can obtain a new cert for just that subdomain. They can even use letsencrypt! (Although they really should use EV for this type of site.)
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Agreeing with everyone though, it's a wrong reason, but I can fathom why someone would do it.