If expiring certificates offer some sort of security shouldn’t they be expiring ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		whatever1 27 days ago \| parent \| context \| favorite \| on: LetsEncrypt – Expiration Notification Service Has ... If expiring certificates offer some sort of security shouldn’t they be expiring after milliseconds? If I had compromised the Bank of America servers a couple of minutes would suffice to collect a ton of password combinations.

scrapheap 27 days ago [–]

They are slowly reducing the period that certificates are valid for, not to the degree of milliseconds, but certainly to the point that renewing them will need to be automated.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact