Comment by nickf

Comment by nickf 14 hours ago

0 replies

View on Hacker News

I still think 'don't pin' is the best advice, but absolutely it should never be done to public CAs. I agree with your point about different endpoints, but maybe one endpoint for pinned apps, separate to your browser-based sites/endpoints.