• andrew@lemmy.stuart.fun
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    This should also be done for CA keys. If ACME can make DNS ownership the source of trust, just let me stuff my own root CA cert in a DNS record and skip the middle man.