Sujet : Re: Website Certs Will Soon Last Only 47 Days
De : invalid (at) *nospam* invalid.invalid (Richard Kettlewell)
Groupes : comp.miscDate : 13. Apr 2025, 13:03:41
Autres entêtes
Organisation : terraraq NNTP server
Message-ID : <wwv34ecfeua.fsf@LkoBDZeT.terraraq.uk>
References : 1 2 3
User-Agent : Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)
Theo <theom+
news@chiark.greenend.org.uk> writes:
Richard Kettlewell <invalid@invalid.invalid> wrote:
Right, the organizations who will have a real problem are those still
renewing certificates manually. They have a choice between spending a
bit more on their own staffing, or automating renewal (probably
cutting their overall costs in the long run).
>
I can see this being a big pain for private infrastructure. Much
networking gear, for example, has a web interface for uploading a
certificate, but not an automated flow for doing so. If that gear is
also not able to reach the internet it can't do any kind of
'well-known' challenges.
Fair point. I think SCEP is the well-established ‘enterprise’ approach
to this (I don’t know the details though). But it’d be nice to see
device vendors supporting ACME more widely.
-- https://www.greenend.org.uk/rjk/
Website Certs Will Soon Last Only 47 Days
Re: Website Certs Will Soon Last Only 47 Days