Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
rmc
on April 9, 2014
|
parent
|
context
|
favorite
| on:
Heartbleed should bleed X.509 to death
You
have a choice. Remove all CAs from your browser, and manually verify all the server signatures yourself.
ivank
on April 9, 2014
[–]
I tried this a few years ago in Firefox, but NSS kept throwing all kinds of bizarre errors, as it demanded that various intermediate CAs be trusted.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
