Note that there's a difference between SSH fingerprints and (self-signed) SSL ce... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

bnr on Nov 13, 2013 | parent | context | favorite | on: Moving forward on improving HTTP's security

Note that there's a difference between SSH fingerprints and (self-signed) SSL certificates. Multiple servers can easily share a certificate.

0xbadcafebee on Nov 14, 2013 [–]

It would be unwise to do so. In any case, phasing out old servers and certs for new ones is common practice. Using one cert everywhere (which would mean using one set of keys everywhere, which is a horrible idea) would require more downtime for maintenance of the certificates. It's not gonna happen.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact