[go: up one dir, main page]
More Web Proxy on the site http://driver.im/ Skip to main content

Search

Items tagged with: letsencrypt


You’re not wrong.

But, looking ahead, we can do so much better than the commercial domain name system.

Commercial domain names are a gold standard example of artificial scarcity. A domain name registrar cost next to nothing to operate. It’s tiny rows of text in a database. It could easily be free to own your own domain name – a huge part of what constitutes identity – on the Internet.

In fact, a non-commercial service has been operational for 24 years. It would be trivial to regulate that browsers in the EU implement support for it and work together with, say, @letsencrypt to ensure it can handle TLS.

That would be an amazing addition to the commons and a future-proof way forward that we could lead on with next to no investment.

#domainNames #DNS #openNic #LetsEncrypt #EU #commons #internet #freedom #ICAAN


Noob clueless question
Why am I getting emails from #letsencrypt that I need to renew a certificate? At first I thought it was a scam.
There's a complicated looking link that includes #NabuCasa that doesn't work when I click it (on my phone at least, using the duck duck go browser).
I do have a #HomeAssistantGreen but I'm not using the cloud service (I did use the trial month)
#HomeAssistant


By consulting the proper documents, one may speak a secure and secret tongue. #TLS #LetsEncrypt #OpenSource cromwell-intl.com/open-source/…


Bonne question! To my followers, is there a non American alternative to let’s encrypt? Cloudflare, but also American.

#buyamerican #boycottusa #elbowsup #notphp #letsencrypt #ssl mastodon.social/@manuelviens/1…


Wouldn't it be cool if #PrusaLink (the webinterface served by #Prusa printers) would provide a way to configure a custom camera stream URL?

You can easily hack the HTML to do it, but it's served as a single compressed HTML page. I proxy it with #nginx for SSL / #LetsEncrypt encryption - I don't think nginx could modify the served decompressed HTML? 🤔

@josefprusa @prusaslicer

#3dPrinting


I would call this a big success. A valid, trusted certificate, signed by Let's Encrypt, without ever exposing a single port to the public internet. Just what I needed. I can't believe how easy it is to do this with #Caddy. They weren't lying when they said you barely needed any configuration. What an incredible program!

#SelfHosted #SelfHosting #ReverseProxy #Jellyfin #LetsEncrypt


Self-hosted Status Page: How to Deploy #Cachet on #AlmaLinux VPS

This article provides a guide for creating a self-hosted Status Page, including how to deploy Cachet Status Page on #AlmaLinux VPS.
What is Cachet Status Page?

Cachet is an open-source status page system that allows organizations to communicate the status of their services to their customers or users in a ...
Keep reading 👉 blog.radwebhosting.com/self-ho… #letsencrypt #vpsguide #opensource #installguide #selfhosting #statuspage


800 lines of :nixos: #nix later and I have successfully beefed up our #3dPrinting infrastructure at work @umphy with one #RaspberryPi 4:

· a gethomepage.dev landing page
· three fullHD webcams, one for each printer, with current filament visible
· a smart #Tasmota multiplug to remotely power off a printer in case of a problem/hangup
· 🐙 #OctoPrint for the Prusa MK3S, #PrusaLink by the #PrusaMINI​s
· 🔐 all password-protected and certs from #LetsEncrypt

#Prusa #NixOS


@Matthias @Linux Is Best
Hab eben mal nachgesehen... die Zertifikate für meinen Server kommen von #LetsEncrypt
Die sitzen in San Francisco... theoretisch müsste man schon so "weit unten" ansetzen bei der Alternativen-suche.

Da wirds dann natürlich schwierig... ich glaub, sehr sehr viele Dienste im Internet nutzen diese CA zur Zertifizierung.


My advise for #EU digital sovereignty project funding and subsidies:
- force ownership of #ICANN top level domains and a standalone EU hosted copy of root DNS servers
- give life to a European Public Key Certificate Authority for free certificates for everyone (a la #LetsEncrypt )
- Start a European public fork of #Mozilla #Firefox browser in pure #FOSS spirit without #ToS

Please be quick about it! #MoveMoveMove #DigitalSovereignty


Co pro mě znamená #Python ?
Programovací jazyk, který řeší moje TLS certifikáty na serveru. Jinak naprosto zbytečný 😝
#Certbot #LetsEncrypt


Most #OpenStreetMap services are now using #ECDSA HTTPS web certificates, the remaining certificates will transition upon renewal. Another small incremental improvement to performance and privacy. We manage 164 certificates which are valid for 516 domains and sub-domains (via Subject Alternative Names). All secured by #LetsEncrypt 🤓❤️🔐


Thought experiment:

@letsencrypt offers certificates to encrypt the traffic between a website & your browser.

They reside in the US & thus are subject to the judiciary system of the US.

What are the possible risks for websites outside the US, given the current unstable political situation & administration? What type of damage could an executive order do? How could this be mitigated?

Boosts appreciated.

#Politics #Security #GeoPolitics #Encryption #LetsEncrypt #CyberSecurity #Tech


More supply chain thoughts.

Let's Encrypt is based in the United States.

#letsencrypt #supplychain #linux #freebsd #web #certificate #ssl #tls


For those who want a local (non-cloud) tool for checking TLS certificate expiration as a result of Let's Encrypt dropping support for expiration notices via email, here's a small shell script which will do it. It needs the OpenSSL command-line tool and an email sender (I use msmtp):

#!/bin/bash

MINIMUM_EXPIRY_DAYS={{ minimum_expiry_days }}
MINIMUM_EXPIRY=$((${MINIMUM_EXPIRY_DAYS} * 86400))

for cert in /etc/letsencrypt/live/*/cert.pem
do
echo Checking ${cert}
if openssl x509 -noout -in ${cert} -checkend ${MINIMUM_EXPIRY} > /dev/null
then
:
else
msmtp --read-envelope-from --read-recipients <<EOF
From: (sender address here)
To: (recipient address here)
Subject: Certificate Expiration Alert

${cert} will expire in fewer than ${MINIMUM_EXPIRY_DAYS} days.
EOF
fi
done

CC @letsencrypt @johns

#LetsEncrypt


Let’s Encrypt SSL certificate expiry warning emails

If you use Let's Encrypt to secure the traffic to your web server, mailserver or other situations where you need a SSL-encrypted data exchange, you are probably using the dehydrated script to manage those certificates to ensure that they will be renewed on time (Let's En

alien.slackbook.org/blog/lets-…

#Slackware #Software #alert #certificate #expiration #expiry #letsencrypt #script #ssl




New Kitten release

• Upgrades to version 5.3.1 of @small-tech/https¹ which has version 4.1.2 of Auto Encrypt² that l removes OCSP stapling (because Let’s Encrypt has removed OCSP support).

Please upgrade your Kitten as soon as possible or any new Kitten servers you try to set up will fail and any certificate renewals for existing servers will start to fail in May.

kitten.small-web.org

(To upgrade, run `kitten update`. Your production servers will update automatically.)

Enjoy!

:kitten:💕

¹ npmjs.com/package/@small-tech/…
² npmjs.com/package/@small-tech/…

#Kitten #SmallWeb #SmallTech #web #dev #TLS #HTTPS #AutoEncrypt #NodeJS #JavaScript #OCSP #LetsEncrypt



Auto Encrypt version 4.1.1 released

Fixed:

• User agent string now includes the correct Auto Encrypt version (and the name fragment “auto-encrypt” instead of “acme”).

• Tests now send `Connection: close` header so they’re not tripped up by the default `keep-alive` introduced in Node 19.

npmjs.com/package/@small-tech/…

#SmallWeb #SmallTech #AutoEncrypt #LetsEncrypt #TLS #SSL #HTTPS #NodeJS #JavaScript #servers #web #dev #FOSS



Let's Encrypt Is Ending Expiration Notice Emails

#LetsEncrypt #Certificates #CostSaving #PrivacyConcern #TrackSSL

tech.slashdot.org/story/25/02/…


I wondered why #LetsEncrypt announced it was ending email notifications. Turns out if you don’t need to email people you don’t need to retain their email address. So this is a good thing.

arstechnica.com/gadgets/2025/0…


New 6-days Validity of Let’s Encrypt Certificates


I just saw this great news: Let’s Encrypt Announces 6-day Validity Certificates

Let’s Encrypt, the non-profit certificate authority, has introduced six-day validity certificates, commonly referred to as short-lived certificates.

Shorter validity periods are great for security. Traditional certificates can last up to a year, meaning if they get compromised, they remain a threat for a long […]

locked.de/new-6-days-validity-…
#Certificates #LetsEncrypt #Security


#enshittification: Let's Encrypt will stop sending renewal alerts by email and instead recommends to use a paying service.

letsencrypt.org/2025/01/22/end…

#letsencrypt


I received a notice that #letsencrypt will cease sending email notices for expiring certificates, so I'm configuring my #RunZero instance to display upcoming expirations on the dashboard.

While doing this, I discovered that my #chromecast is pulling down certificates with a 48 hour TTL. Looks like #Google is getting serious about shortening #TLS certificate lifespans.




letsencrypt.org/2025/01/22/end… #letsencrypt


Let’s Encrypt intends to discontinue sending expiration notification emails

letsencrypt.org/2025/01/22/End…

#letsencrypt #selfhost #selfhosting #selfhosted


Letsencrypt will stop informing about expiring certificates

See letsencrypt.org/2025/01/22/end…
I can understand this.
Monitoring is a thing, especially with #Zabbix 😉

#LetsEncrypt


Let's Encrypt ending support for expiration notification emails

#certificates #ssl #mail #email #letsencrypt #notifications #selfhosting #selfhosted

letsencrypt.org/2025/01/22/end…


it's probably related to this talk by Aaron Gable, from #letsencrypt :

"How To Revoke And Replace 400 Million Certificates Without Breaking The Internet"

passthesalt.ubicast.tv/videos/…


#LetsEncrypt is a fantastic software. It allows you to create #TLS certificates (also known as #SSL) for your server apps. It is one of the reasons the majority of sites are now https://