Other articles in this series: Let's Encrypt now supports ACME-CAA: closing the DV loophole Mitigating the Hetzner/Linode XMPP.ru MitM interception incident Mitigating the Hetzner/Linode XMPP.ru MitM interception incident, part 2: XMPP-specific mitigations Expect-CT Lite: A humble proposal for minimal CT enforcement in TLS certificates (If you just want some recommendations for what to do, skip do