Comment Re:From the Article (Score 0) 220
your credentials to the server. This is not he case wih a cert auth,
More precisely said: your private key is never sent to the server. That's why it is called "private".
Because even when using a client cert to auth, your credentials are indeed sent to the server. Otherwise, how could the server auth you?