Collaborate Disseminate
A few days ago, Let’s Encrypt discovered that they misinterpreted RFC 5280, thus making every certificate they issued valid for one second longer than expected.
The associated issue on Mozilla bug tracker definitively looks serious, and so… Continue reading Let’s Encrypt certificate lifetime incident: is there any security risk?
A few days ago, Let’s Encrypt discovered that they misinterpreted RFC 5280, thus making every certificate they issued valid for one second longer than expected.
The associated issue on Mozilla bug tracker definitively looks serious, and so… Continue reading Let’s Encrypt certificate lifetime incident: is there any security risk?
A few days ago, Let’s Encrypt discovered that they misinterpreted RFC 5280, thus making every certificate they issued valid for one second longer than expected.
The associated issue on Mozilla bug tracker definitively looks serious, and so… Continue reading Let’s Encrypt certificate lifetime incident: is there any security risk?
Given the scenario that:
Victim rents VM1 from a cloud provider, and points his/her DNS record to that VM1’s IP address
Victim deletes VM1 and switches to a different cloud provider, and creates VM2 there, but forgets to modify the DNS re… Continue reading Verifying that no malicious certificate has been issued while a DNS record was pointing to an uncontrolled IP
So many websites seem to rely on free letsencrypt certificates for their TLS, wouldn’t it cause a major disruption? Isn’t this a "single point of failure" problem in the modern web?
Please correct me if I’m mistaken, but I’ve reached the conclusion that CA-signed certificates in the current Internet Public Key Infrastructure do not add any more security compared to servers providing self-signed certificates or raw pub… Continue reading Certificates Do Nothing
Domain: https://americanselfstorageok.com
Yesterday morning it started giving a "your connection is not private" warning for me and all of the users and client. It didn’t renew the certs automatically for some reason.
I ssh’d int… Continue reading Certbot certs seem to be bad on every computer but mine [migrated]
Have a look here: https://letsencrypt.org/2018/08/06/trusted-by-all-major-root-programs.html
First paragraph says: "As of the end of July 2018, the Let’s Encrypt root, ISRG Root X1, is directly trusted by Microsoft products."
I h… Continue reading Where is ISRG Root X1 certificate on Windows 10?
Let’s Encrypt was founded in 2012, going public in 2014, with the aim to improve security on the web. The goal was to be achieved by providing free, automated access to SSL and TLS certificates that would allow websites to make the switch over to HTTPS without having to spend …read more
Continue reading Let’s Encrypt Will Stop Working For Older Android Devices
I have developed my DRF back-end API locally, deployed it on an AWS Lightsail instance (with a public static IP) and I now want to secure it with HTTPS.
I understand that in order to use Let’s Encrypt (and not pay for an SSL certificate), … Continue reading Do I need to associate my backend API server with a domain name to get an SSL certificate for it (HTTPS)?