An interesting read about how a vulnerability in Let’s Encrypt ACME TLS-SNI-01 validation led to being able to issue SSL certificates for any domain desired. Let’s Encrypt has Disabled ACME TLS-SNI-01 Validation for now. How I exploited ACME TLS-SNI-01 issuing Let’s Encrypt SSL-certs for any domain using shared hosting Click the link above to read the full…
Intermediate SSL Certificates Still Matter
These days, it may seem that having a properly installed intermediate SSL certificate is no longer needed for your website. Although browsers like Google Chrome may automatically go out and fetch the proper intermediate go-between, other browsers like Firefox may be hit or miss, and mobile browsing may cause security warnings. Let’s break it down…
New Digicert Root Intermediate Certificates For All Symantec SSL Products
Effective on December 1, 2017, all newly issued Symantec SSL certificates (including GeoTrust, RapidSSL, Thawte, and Symantec) will now use a new Digicert signed intermediate certificate. Digicert recently acquired the certificate business from Symantec. Symantec was penalized by Google due to security issues with regards to properly vetting SSL certificates in the past. Google Chrome…