qaz@lemmy.world to linuxmemes@lemmy.worldEnglish · 2 days agoManjaro let their SSL certificate expire againlemmy.worldimagemessage-square109linkfedilinkarrow-up1703arrow-down13
arrow-up1700arrow-down1imageManjaro let their SSL certificate expire againlemmy.worldqaz@lemmy.world to linuxmemes@lemmy.worldEnglish · 2 days agomessage-square109linkfedilink
minus-squareRobotToaster@mander.xyzlinkfedilinkarrow-up19·2 days agoLetsEncrypt only does level one (domain validated certificates), it doesn’t offer organisation or extended validation. Basically they only prove you control example.com, they don’t prove you are example PLC.
minus-squareEufalconimorph@discuss.tchncs.delinkfedilinkarrow-up1·3 hours agoOV & EV also don’t prove that you’re the expected business with a given name. E.g. the incident where Ian Carroll registered a local business named “Stripe, Inc.” and got an EV cert for it. Which was entirely valid, despite being the name of a payment processor. Business names aren’t globally unique.
LetsEncrypt only does level one (domain validated certificates), it doesn’t offer organisation or extended validation.
Basically they only prove you control example.com, they don’t prove you are example PLC.
OV & EV also don’t prove that you’re the expected business with a given name. E.g. the incident where Ian Carroll registered a local business named “Stripe, Inc.” and got an EV cert for it. Which was entirely valid, despite being the name of a payment processor. Business names aren’t globally unique.