Comment Re:It is supposed to change (Score 1) 233
What reasons are there to cause one to want to generate a new key instead of reusing the old one?
For the same reasons that you would rotate passwords. It is just a precaution in case it accidentally was leaked. When changing certificate anyway there is no inconvenience to the users from replacing the key, so you might as well replace it. It would for example help a bit in case an old backup of the webserver had been leaked. The difference in security is minor though, there are much greater threats from insecure CAs.