Sujet : Re: Website Certs Will Soon Last Only 47 Days
De : no_email (at) *nospam* invalid.invalid (Oregonian Haruspex)
Groupes : comp.miscDate : 12. Apr 2025, 04:30:41
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <vtcmp1$3fa29$1@dont-email.me>
References : 1
User-Agent : NewsTap/5.5 (iPad)
Lawrence D'Oliveiro <
ldo@nz.invalid> wrote:
The CA/Browser Forum (a group that includes those entities that issue
you with attested SSL/TLS certificates) has voted to severely shorten
the valid duration of its certificates from one year to just 47 days
<https://www.computerworld.com/article/3960658/vendors-vote-to-radically-slash-website-certificate-duration.html>.
Some see this as a revenue grab. Yes, it may be, but there are also
good security reasons for doing so.
The revenue-grab reason may backfire. For most purposes, a free cert
service like Let’s Encrypt is quite sufficient, and it’s easy enough
to set your system to run a cron task (or systemd timer) to
auto-renew. This already happens by default on a Debian installation,
for example.
It’s not a revenue grab. It IS yet another of the methods THEY are
employing to make it impossible to use the Internet with old, backdoor-free
computers.
Website Certs Will Soon Last Only 47 Days
Re: Website Certs Will Soon Last Only 47 Days