Let’s Encrypt discovers CAA bug, must revoke customer certificates

Upstream announcements:

Comment to Ars Technica:

Please don’t login as root :scream_cat: if you absolutely have to, please at least PermitRootLogin prohibit-password (which I think is nowadays a default) so it will need at least an SSH key.