Twitter, you break my heart
Oh, Twitter.
Why do you make me so sad?
I love you. I learn about news from you first. And you’re popular. I get it. I understand that scaling is a challenge. I’ll forgive you that — and the Fail Whale seems to be less and less common.
But being popular isn’t an excuse for getting your SSL certificates wrong. If you’ve got a site (say, twitter.com) and you want to support other sites (say, explore.twitter.com) you need a wildcard certificate. You’re a social site, and a promiscuous one at that, which means a lot of people with bad intentions exploit you. You need every bit of security you can handle, without teaching your users to ignore bad certificate warnings.
This is the second time in a week that I’ve come across a big company messing up their certificates. I think the Internet needs a remedial class in SSL configuration.
One Comment, Comment or Ping
Reply to “Twitter, you break my heart”