PSA: Browsers alone are not a very good tool for validating new SSL certificate deployments. They cache intermediate certificates and won't show you chain validation issues if they've seen the intermediate certs before. Use "dumb" tools like wget, curl. or even iwr for sanity testing, and use s_client to manually check the cert chain. #SSL #TLS #IT #government

@aki #LDAP is definitely the point.

• #SelfHosting of #Mailservers make at least nominally sense.

• Caving in to the sharade of #SSL commercialization is quite much for me as @cacert assurer.

Just got our last certificate renewal email ever.

For years we paid DigiCert $144/year for a wildcard. Click button, enter payment, download cert, install manually, set calendar reminder. Repeat forever.

All our products are now fully automated with CertKit. Let's Encrypt issues certs automatically, CertKit handles discovery and distribution. Zero human intervention, zero annual fees.

This email goes straight to the trash. We're done paying the certificate tax.

#SSL #PKI

https://blog.gslin.org/archives/2025/12/10/12778/lets-encrypt-%e7%9a%84%e5%8d%81%e5%b9%b4%e8%a8%98%e9%8c%84/

Let's Encrypt 的十年記錄

#authority #ca #certificate #letsencrypt #root #ssl #tls

10 Years of Let's Encrypt

https://letsencrypt.org/2025/12/09/10-years

#HackerNews #LetsEncrypt #10Years #DigitalSecurity #OpenSource #SSL #Certificates #CyberSecurity

Stop! ✋ Did someone say "SSL certificate"? Welcome to 1999.

In 2025, it's TLS. Period. Clear, correct – and secure.

https://www.bevuta.com/blog/call-it-tls-not-ssl

#TLS #SSL #SSLisDead #HTTPS #CyberSecurity #TechTalk #WebSecurity
k

Certributor - Công cụ phân phối chứng chỉ SSL cho dịch vụ homelab. Tự động hóa việc cập nhật và phân phối chứng chỉ từ Traefik hoặc nguồn tuỳ chỉnh đến các host, kèm theo thông báo qua Shoutrrr/SMTP và lệnh tùy chỉnh sau khi đẩy. Hiện đang tìm kiếm phản hồi từ cộng đồng về tính năng cần thiết. Bạn đang dùng Ansible, script hoặc cron job cho việc này?

#Homelab #SSL #Tool #TựĐộngHoa #SelfHosted
#CôngCụMới #QuảnLýChứngChỉ #PhầnMềmMở #LậpTrìnhViênSinhViên

https://www.reddit.com/r/selfhosted/co

Looks like all buses in the Faroe Islands are encrypted #ssl

python: "AttributeError: module 'ssl' has no attribute 'wrap_socket'" when calling mysql.connector.connect() #python #mysql #ssl

https://askubuntu.com/q/1560591/612

🔐 Let's Encrypt to Cut Certificate Lifetimes to 45 Days by 2028 // Linuxiac

｢ Shorter certificate lifetimes are intended to limit the impact of compromised keys and improve the effectiveness of revocation mechanisms. Alongside this shift, the authorization reuse period, the window during which previously validated domain control can be reused, will decrease from 30 days to just 7 hours ｣

https://linuxiac.com/lets-encrypt-to-cut-certificate-lifetimes-to-45-days-by-2028/

#letsencrypt #certificates #ssl #cybersecurity

I'm finally switching to #varnish for a caching. (or #vinyl as it is now)
What's the best way to do #https / #ssl?
I suppose I can just throw #apache in front of it, with HTTPS. But... is that the most effecient way?

#cybersecurity #letsencrypt #ssl

Let’s Encrypt to Reduce Certif...

Think your website is secure just because it has SSL? This article breaks down the real website security gaps that put businesses at risk every day https://english.mathrubhumi.com/technology/ssl-is-not-enough-why-your-website-is-still-wide-open-to-hackers-esbdoj87?utm_source=dlvr.it&utm_medium=mastodon #websitesecurity #hacking #SSL

Cảnh báo cho anh em self-host! Sau khi cập nhật NGINX trên Debian 13, có thể gặp lỗi 525/521 SSL Handshake với Cloudflare. Nguyên nhân do Cloudflare không thích thứ tự NGINX trình bày chứng chỉ. Cách khắc phục là chỉnh sửa file `/etc/letsencrypt/options-ssl-nginx.conf` (nếu dùng Certbot) hoặc cấu hình SSL của NGINX, bật `ssl_prefer_server_ciphers on` và cập nhật danh sách cipher. Việc này đã được kiểm chứng vẫn hoạt động tốt với tự động gia hạn.
#NGINX #Debian #Cloudflare #SSL #Certbot #SelfHost

🚨 Banks and insurance firms: Still on .com? You're missing out on instant trust and security with .BANK or .INSURANCE domains. These restricted TLDs signal security & legitimacy. Overwhelmed by requirements? DNSimple supports all security and compliance requirements, including #DNSSEC, #SSL, #MFA, real‑time #DDoS protection, vanity name servers, and expert support.
Claim your .BANK or .INSURANCE domain today!
Watch https://youtu.be/4dTbaSiag3s

#BankDomain #InsuranceDomain #DNSSecurity

Let's Encrypt vai reduzir validade dos certificados SSL para 45 dias
🔗 https://tugatech.com.pt/t75134-let-s-encrypt-vai-reduzir-validade-dos-certificados-ssl-para-45-dias

#ssl 

Inork ote badaki hemendik zelan pasatu?

puntu.eus orritik sartu naiz eta ez dit saiorik hasteko aukerarik emon? :(

Linux/Firefox-en zeozer instalatu behar dut izenpe kontua gorde dezan?

Mila esker! :'D

#izenpe #SSL #puntueus

Na geil, ausgestreckter Mittelfinger 🖕 vom #ssl Zertifikat statt automatischer Erneuerung.

Montag halt 🙄

https://blog.gslin.org/archives/2025/12/02/12764/lets-encrypt-%e6%89%93%e7%ae%97%e8%a6%81%e6%8a%8a%e6%86%91%e8%ad%89-90-%e5%a4%a9%e7%9a%84%e6%95%88%e6%9c%9f%e5%86%8d%e9%99%8d%e5%88%b0-45-%e5%a4%a9/

Let's Encrypt 打算要把憑證 90 天的效期再降到 45 天

#baseline #browser #ca #certificate #forum #letsencrypt #privacy #requirements #security #ssl #tls

RE: https://mastodon.social/@nixCraft/115648855990372645

Importantly there is new DNS PERSIST validation method, the DNS TXT entry used to demonstrate control won't have to change each renewal.

#ssl #certificates #letsencrypt