Conversation

Notices

1. Embed this notice
   ᒍᗪᙎ 🇨🇦 (jdw@the.mayhem.academy)'s status on Saturday, 04-Jan-2025 08:35:02 JST ᒍᗪᙎ 🇨🇦

   I’m not entirely sure, but I think I’m sensing that Steve Gibson isn’t supportive of the #LetsEncrypt idea to move to 6-day #TLS certificates.

   • Embed this notice
     OCTADE (octade@soc.octade.net)'s status on Saturday, 04-Jan-2025 08:35:00 JST OCTADE

     in reply to
     6-day TLS expiration? Am I assuming rightly? If so, that's nuts. It is already occasionally problematic renewing in time with the longer period.
     
     Is someone trying to sow up the market so they can put a meter on it?
     
     
   • Embed this notice
     OCTADE (octade@soc.octade.net)'s status on Saturday, 04-Jan-2025 08:51:48 JST OCTADE

     in reply to

     • GaySteve🏳️‍🌈
     @jdw@the.mayhem.academy
     
     Or possibly ... only operators with huge computational infrastructure will be able to service the demand, cutting out all the smaller fish?
     
     There is likely some kind of angle or grift or rent-seeking when corpos suggest or do crazy stuff.
     
   • Embed this notice
     GaySteve🏳️‍🌈 (steve@ferral.cat)'s status on Saturday, 04-Jan-2025 08:51:55 JST GaySteve🏳️‍🌈

     in reply to

     • OCTADE
     @octade @jdw Google moving to 90 days was a bad idea. Moving to 6 days is insane. This is going to lead to users ultimately accepting questionable certs (which becomes a major security issue) or users not being able to access services.