Comment Re:Not Suprising (Score 1) 33
In theory Multi-VA [letsencrypt.org] should still prevent getting a TLS certificate
Yeah, that's why I only said plausibly, rather than possibly, as it'd take that 1:20 shot to make it happen. But plausibly may be overstating it a bit, still.
Any certificates from LE would also appear in the certificate transparency log that currently only has EnTrust and DigiCert certificates. A few hundred pages' worth of certificates.
Given everything we've learned here, do you think they're actually monitoring CT logs? Or hiring a brand reputation service to do it for them? I would bet a lot of money on the answer to that question being no. As you said, asleep at the switch