The tool was made available for customers to legitimately check if the Private Key matched the SSL Certificate that was being installed - a common question and feature request from our customers.
However, upon review of the comments made in the internet community we have made a decision to remove this specific tool and to review all other tools that we make publicly available via our websites.
We also saw a heavy attempt to hack/abuse this tool over the past few hours, perhaps to look for exploits, an action I find absurd for those who make out to be security conscious.
I welcome any further comments on how we can improve our service and do hope that our actions to remove the tool today were prompt and satisfactory.
Zane Lucas
General Manager
Trustico Online Limited
Look, I have absolutely no background in security, but I could tell immediately that this was an absolutely horrible idea.
What were you thinking? That's not a loaded question. I literally have no idea what was going through the mind of anyone at your company when it was decided to build this abomination.
The tool was made available for customers to legitimately check if the Private Key matched the SSL Certificate that was being installed - a common question and feature request from our customers.
However, upon review of the comments made in the internet community we have made a decision to remove this specific tool and to review all other tools that we make publicly available via our websites.
We also saw a heavy attempt to hack/abuse this tool over the past few hours, perhaps to look for exploits, an action I find absurd for those who make out to be security conscious.
I welcome any further comments on how we can improve our service and do hope that our actions to remove the tool today were prompt and satisfactory.
Zane Lucas General Manager Trustico Online Limited