>This effectively means, as a domain zone admin, I have to trust every single >service I define, not just to properly deliver this service, but also not to >exploit his ability to obtain signed certificates in my name.
Yes. >Also you rely on the fact that on UNIX only root can bind on port 80 and 443. Not for *security* but for connectivity. That is an important difference. _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
