If you can inject arbitrary malicious routes, you can make ACME requests for a n... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		dsr_ 41 days ago \| parent \| context \| favorite \| on: Is BGP safe yet? If you can inject arbitrary malicious routes, you can make ACME requests for a new cert.

ThomasGlanzmann 41 days ago [–]

You can mitigate this with DNSSEC, CAA records and account pinning. See: https://www.devever.net/~hl/xmpp-incident

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact