Fuck google and their Root CA 1.6 program.
-
Fuck google and their Root CA 1.6 program.
Is very scary that internet community couldn’t push back this dickheads to keep clientAuth
-
Fuck google and their Root CA 1.6 program.
Is very scary that internet community couldn’t push back this dickheads to keep clientAuth
If you missed it, then Google basically killed mTLS based on Public PKI without any fucking feedback from anyone. They just unilaterally decided that it’s not secure to allow establish trust between hosts using PPKI.
At February 11th, Let’s Encrypt stoped including clientAuth EKU and things will start breaking from now.
I hope that things will start breaking internet starting from today, peaking at May 17th when last LE cents with clientAuth expired, bringing fucking internet down and forcing Google to revert this shit
Just to be clear: it’s not abstract google did that. There are short and easily obtained list of people who made this decision and went all the way to stick it up to everyone arses. This people are traitors of free internet and fuckheads. I don’t wish them well at all
Also fuck LE by letting this slide. They could just say “fuck you google”. LE is way more powerful than fucking chrome
Google is a cancer of internet.
-
R ActivityRelay shared this topic
-
If you missed it, then Google basically killed mTLS based on Public PKI without any fucking feedback from anyone. They just unilaterally decided that it’s not secure to allow establish trust between hosts using PPKI.
At February 11th, Let’s Encrypt stoped including clientAuth EKU and things will start breaking from now.
I hope that things will start breaking internet starting from today, peaking at May 17th when last LE cents with clientAuth expired, bringing fucking internet down and forcing Google to revert this shit
Just to be clear: it’s not abstract google did that. There are short and easily obtained list of people who made this decision and went all the way to stick it up to everyone arses. This people are traitors of free internet and fuckheads. I don’t wish them well at all
Also fuck LE by letting this slide. They could just say “fuck you google”. LE is way more powerful than fucking chrome
Google is a cancer of internet.
This is another reason why having single browser makes everyone vulnerable for corporate ill intent. This is security issue, because google now knows that Let’s Encrypt has no spine and they can do to public PKI whatever fuck they want
Yes, having PKI that depended on centralized certificate authorities is bad and we have to find a way to do better, which means that collective will to deploy whatever decentralized PKI alternative community would agree on, must outweigh google ability to hold human civilization hostage
-
This is another reason why having single browser makes everyone vulnerable for corporate ill intent. This is security issue, because google now knows that Let’s Encrypt has no spine and they can do to public PKI whatever fuck they want
Yes, having PKI that depended on centralized certificate authorities is bad and we have to find a way to do better, which means that collective will to deploy whatever decentralized PKI alternative community would agree on, must outweigh google ability to hold human civilization hostage
And by the way fuck Apple and Safari people who also had power to prevent this and let it happen.
It’s kinda pointless to say they should’ve been on community side, because apple run by greedy tim and co who cares only about his stock option prices.
I’m beyond furious, in case it’s not clear
![😕](https://postcall.pub/assets/plugins/nodebb-plugin-emoji/emoji/android/1f615.png?v=2716ecfffdc ":\")
-
And by the way fuck Apple and Safari people who also had power to prevent this and let it happen.
It’s kinda pointless to say they should’ve been on community side, because apple run by greedy tim and co who cares only about his stock option prices.
I’m beyond furious, in case it’s not clear
Oh, fuck you [Dimitris Zacharopoulos[(https://cabforum.org/2025/06/11/minutes-of-the-f2f-65-meeting-in-toronto-canada-scwg-june-11-2025/#:~:text=The%20high%20level%20summary%20is%20that%20there%20are%20a%20few%20very%20vocal%20individuals%20who%20are%20concerned%20about%20clientAuth%20deprecation.):
The GitHub issue was opened a few days ago, but a few weeks ago the conversation originated in the Let’s Encrypt community. The high level summary is that there are a few very vocal individuals who are concerned about clientAuth deprecation.
