<div dir="auto"><div><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Mar 4, 2019, 1:48 PM Gary E. Miller via devel <<a href="mailto:devel@ntpsec.org">devel@ntpsec.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Yo Matthew!<br>
<br>
On Mon, 4 Mar 2019 21:35:14 +0000<br>
Matthew Selsky <<a href="mailto:Matthew.Selsky@twosigma.com" target="_blank" rel="noreferrer">Matthew.Selsky@twosigma.com</a>> wrote:<br>
<br>
> On Mon, Mar 04, 2019 at 12:11:07PM -0800, Gary E. Miller via devel<br>
> wrote:<br>
> <br>
> > Given the Comodo mess of last week I expect a lot more people will<br>
> > want to do pinning next month. <br>
> <br>
> Do you have a reference for this mess?<br>
<br>
<br>
Very long NANOG thread:<br>
<br>
<a href="https://mailman.nanog.org/pipermail/nanog/2019-February/099719.html" rel="noreferrer noreferrer" target="_blank">https://mailman.nanog.org/pipermail/nanog/2019-February/099719.html</a></blockquote></div></div><div dir="auto"><br></div><div dir="auto">TLDR there was an EPP takeover by crackers unknown. Let's Encrypt and Comodo apparently were fooled into signing bad TLS cert and while Let's Encrypt is trying to do better Comodo was apparently like meh, what ever. Spawn ridiculously long thread, DANE. SPF whatever.</div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <br>
</blockquote></div></div></div>