Laurie: Improving SSL certificate security
Laurie: Improving SSL certificate security
Posted Apr 21, 2011 12:19 UTC (Thu) by robbe (guest, #16131)In reply to: Laurie: Improving SSL certificate security by Cyberax
Parent article: Laurie: Improving SSL certificate security
> DNSSEC signatures can't 'expire',
They do. Search RFC4034 for "signature expiration".
But Lennie's expire-within-seconds is hyperbole. Normal expiry is in hours or days. If your clock is off a few hours, you have my sympathy. Just fix it already.