HomeAboutMailing ListList Chatter /0/0

Let's Encrypt revoking over 2% of all active certs

2020-03-03 by: David White
From: David White 
Let's Encrypt is revoking over 2% of active certs out in the field right
now. That's happening tomorrow:

David White

=============================================================== From: Billy ------------------------------------------------------ Woah. Thanks for sharing! --b ow. That's happening tomorrow: https://community.letsencrypt.org/t/revoking-= certain-certificates-on-march-4/114864

=============================================================== From: "Mike (meuon) Harrison" ------------------------------------------------------ That's a LOT of certificates. 3,048,289 ? Wow. Even with a lot of them dupes. Thank you for sharing. Side note: I tend to renew mine manually, mostly because my server usage of domains/FQDN's etc.. tends to change over time. I don't put the renew job in Crontab. Still, time to verify some of my domains.

=============================================================== From: Adam Jimerson ------------------------------------------------------ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I had a few certs that was affected by this, thankfully if you had any affected certificates Let's Encrypt sent out an email earlier today letting you know which certificates are affected and should be renewed before tomorrow. Not super advanced notice, but better than nothing. If you use Let's Encrypt to generate multi-domain certificates then you're more than likely affected and should check what ever email address you used when you generated those certs. -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEELLlB4D3dJQL6YIqWtmZSyNpTGkkFAl5fHtIACgkQtmZSyNpT GkkRPwgA0PTNmxcVtxAFMYILey82IqZZjcm7Dkqu+GCzODX3PAKdgIUtVrcepB+j nXqzC49010K/uUGfEMnTRlgAD/XjILrYenSE5xuHVfufwbIyx63oIrvc7QhF0lVT N7SNlyPFqquBaggM4+fZlx3uy0dST1xwdOu86zVRnjdTXXzuEtjhxg/5qMcOZDv5 SoF96ce61GsDTxtewEDsI1BR4VHe2Y2CgrY2ETO42yiPiVkR956tqrtWHYjScF8z 7AZiuLpmzR5ocX34RHgGFp5K4Fa5ncvYCQ/hSpqpNm2rAAepiF/+aqhP4fsPc0Oz wuRPEvMp0eXjM7RBtiJkpFqEh0RnDg== =Uqg3 -----END PGP SIGNATURE----- ===== | chugalug COULD NOT VERIFY vendion@gmail.com as the sender nor content validity =====