Have you been reading the thread? https://news.ycombinator.com/item?id=46952590 ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		nightpool 20 days ago \| parent \| context \| favorite \| on: Upcoming changes to Let's Encrypt and how they aff... Have you been reading the thread? https://news.ycombinator.com/item?id=46952590 there are a lot of reasons why browsers need to care about whether CAs are issuing insecure certificates to XMPP or SMTP servers (or credit card machines)

throw0101a 20 days ago [–]

> […] there are a lot of reasons why browsers need to care about whether CAs are issuing insecure certificates to XMPP or SMTP servers (or credit card machines)

Why does having the clientAuth capability make a certificate "insecure"?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact