<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: KairuByte</title><link>https://news.ycombinator.com/user?id=KairuByte</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Mon, 13 Jul 2026 05:36:46 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=KairuByte" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by KairuByte in "Encrypted traffic interception on Hetzner and Linode targeting Jabber service"]]></title><description><![CDATA[
<p>Because the attacker can simply request new keys. There’s nothing stopping them from going “hey LE, I need a new key! This is my domain, here is the challenge, give me my cert!” And LE will oblige, because as far as it can tell, they are you.<p>Edit: To be clear, this is a problem with a solution. But you asked why simply throwing a LE cert into the mix wouldn’t prevent the issue.</p>
]]></description><pubDate>Sat, 21 Oct 2023 02:17:51 +0000</pubDate><link>https://news.ycombinator.com/item?id=37963505</link><dc:creator>KairuByte</dc:creator><comments>https://news.ycombinator.com/item?id=37963505</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=37963505</guid></item></channel></rss>