Sujet : Re: Website Certs Will Soon Last Only 47 Days
De : jmccue (at) *nospam* magnetar.jmcunx.com (John McCue)
Groupes : comp.miscDate : 12. Apr 2025, 15:06:58
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <vtds21$ks2u$1@dont-email.me>
References : 1
User-Agent : tin/2.6.1-20211226 ("Convalmore") (Linux/5.15.161 (x86_64))
Lawrence D'Oliveiro <
ldo@nz.invalid> wrote:
The CA/Browser Forum (a group that includes those entities that issue
you with attested SSL/TLS certificates) has voted to severely shorten
the valid duration of its certificates from one year to just 47 days
<https://www.computerworld.com/article/3960658/vendors-vote-to-radically-slash-website-certificate-duration.html>.
Some see this as a revenue grab. Yes, it may be, but there are also
good security reasons for doing so.
I agree with this. Plus include the fact that google and
friends are trying to block 'http' (no s) static sites,
seems it is a continuation of a war on General Computing.
I would not be surprised that in a few short years you will
only be able to access sites with a back-doored Cell Phone.
The revenue-grab reason may backfire. For most purposes, a free cert
service like Let’s Encrypt is quite sufficient, and it’s easy enough
to set your system to run a cron task (or systemd timer) to
auto-renew. This already happens by default on a Debian installation,
for example.
This I would not know :) I have moved my WEB Site to
gemini/gopher on SDF. My site justs sits there to point
people to gemini and/or gopher.
-- [t]csh(1) - "An elegant shell, for a more... civilized age." - Paraphrasing Star Wars
Website Certs Will Soon Last Only 47 Days
Re: Website Certs Will Soon Last Only 47 Days