I believe so that a user on a shared host can't get a certificate issued for other user's sites

edit: I'm not sure why it doesn't prompt you for a replacement port if 80's in use, as long as that port also requires root permissions to use