[Privoxy-devel] cert lifetime
Fabian Keil
fk at fabiankeil.de
Sat May 28 17:00:46 UTC 2016
Roland Rosenfeld <roland at spinnaker.de> wrote:
> On Fri, 27 May 2016, Lee wrote:
>
> > i got curious & checked the cert for www.privoxy.org
> >
> > Is the three month certificate lifetime expected?
>
> This is the (unchangeable) default for Let's Encrypt certificates.
> See https://letsencrypt.org/2015/11/09/why-90-days.html
At least in theory the certificates should have been
automatically renewed a couple of days ago, though.
This seems to be currently prevented by:
https://github.com/lukas2511/letsencrypt.sh/pull/202
While the issue has been fixed upstream, the fix hasn't made
it into the ElectroBSD ports tree yet.
I'll look into upgrading the port or switching to another
client[1] before the certificates become invalid.
Fabian
[1] Apparently the cool kids use letskencrypt now:
https://kristaps.bsd.lv/letskencrypt/
According to the README it has a "strong focus on security".
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.privoxy.org/pipermail/privoxy-devel/attachments/20160528/33a4f4d3/attachment.bin>
More information about the Privoxy-devel
mailing list