Sujet : Website Certs Will Soon Last Only 47 Days
De : ldo (at) *nospam* nz.invalid (Lawrence D'Oliveiro)
Groupes : comp.miscDate : 11. Apr 2025, 23:32:56
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <vtc5an$2oj80$1@dont-email.me>
User-Agent : Pan/0.162 (Pokrosvk)
The CA/Browser Forum (a group that includes those entities that issue
you with attested SSL/TLS certificates) has voted to severely shorten
the valid duration of its certificates from one year to just 47 days
<
https://www.computerworld.com/article/3960658/vendors-vote-to-radically-slash-website-certificate-duration.html>.
Some see this as a revenue grab. Yes, it may be, but there are also
good security reasons for doing so.
The revenue-grab reason may backfire. For most purposes, a free cert
service like Let’s Encrypt is quite sufficient, and it’s easy enough
to set your system to run a cron task (or systemd timer) to
auto-renew. This already happens by default on a Debian installation,
for example.
Website Certs Will Soon Last Only 47 Days
Re: Website Certs Will Soon Last Only 47 Days