Comment by mholt

Comment by mholt 2 days ago

1 reply

View on Hacker News

I don't know much about CT requirements, but can't they prune data out of their logs after some time? Since the certs only last 6 days, the growth of the logs can be capped at some point right? If not now, provisions for such operations could surely be implemented, I imagine.

PS. Neat site!

Eikon 2 days ago

> I don't know much about CT requirements, but can't they prune data out of their logs after some time? Since the certs only last 6 days, the growth of the logs can be capped at some point right?

That's what happens - logs are "expired" after a few years. But if you want to have an exhaustive monitor, you probably don't want to discard the records of expired certificates.

> PS. Neat site!

Thank you!

Reply View 0 replies