On Fri, 27 Mar 2015 15:14:02 -0400 Rich Freeman <ri...@gentoo.org> wrote:
> As has been pointed out, this is a moot issue for Gentoo. However, > I'm not aware of anybody who both offers a free certificate and will > let you change your private key if it is compromised free of charge. I think wosign does. Haven't tested, but discussion on hacker news indicates revocation is free [1]. And yes, the startssl behaviour regarding revocation is not good... [1] https://news.ycombinator.com/item?id=8982013 -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42
