minus-squarepatmorgan235@alien.topBtoSelf-Hosted Main•How are so many sites OK with using cloudflare when they are basically a MITM?linkfedilinkEnglisharrow-up1·1 year agoBecause that’s not how certificates work? Your private key is never sent to the CA with you submit a Certificate Signing Request, only the public key and a bunch of metadata. (The exception being code signing certs that are delivered on an HSM but the key never leaves the HSM) linkfedilink
Because that’s not how certificates work?
Your private key is never sent to the CA with you submit a Certificate Signing Request, only the public key and a bunch of metadata.
(The exception being code signing certs that are delivered on an HSM but the key never leaves the HSM)