#certificates — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #certificates, aggregated by home.social.
-
Lets Encrypt Stopping Issuance for Potential Incident
https://letsencrypt.status.io/pages/incident/55957a99e800baa4470002da/69fe2d6698ca07050eb4b1b3
#HackerNews #LetsEncrypt #Incident #Cybersecurity #SSL #Certificates #WebSecurity
-
Secure Boot Certificate in QEMU Ubuntu 24.04 for Windows Guest #virtualization #qemu #secureboot #certificates
-
How to regenerate sendmail certifcates #configuration #lamp #certificates #sendmail #tls
-
How to regenerate sendmail certifcates #configuration #lamp #certificates #sendmail #tls
-
How to regenerate sendmail certifcates #configuration #lamp #certificates #sendmail #tls
-
PKI in a Nutshell
A blog by RonaldThis blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.
#dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore
-
PKI in a Nutshell
A blog by RonaldThis blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.
#dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore
-
PKI in a Nutshell
A blog by RonaldThis blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.
#dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore
-
PKI in a Nutshell
A blog by RonaldThis blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.
#dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore
-
PKI in a Nutshell
A blog by RonaldThis blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.
#dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore
-
Oh, look! The US #military is treating #cybersecurity like it's an optional accessory! 🎖️🔐 Why bother with updated #TLS #certificates when you can just let everyone enjoy a nostalgic trip back to the early 2000s? 🚀💾 "Welcome to #LWC #Communities," where #expired security is the new norm. 🤦♂️
https://www.cyber.mil/stigs/downloads #outdated #HackerNews #ngated -
#Development #Announcements
DNS-PERSIST-01 · A new model for DNS-based challenge validation https://ilo.im/16aqtz_____
#CA #Certificates #Wildcards #Validation #DNS #HTTPS #Server #WebDev #Backend -
Do you hate #passwords as much as I do?
Can't we have public key #authentication everywhere? Like in my #email client?Yes we can! Without #authkeys!
Because #TLS supports not just #server side #certificates , but also the client can be verified.
My #Dovecot now logs me in without a password :D I just need to possess a valid (unlocked) private key. The secret never crosses the network.
Next step: make sure the decrypted key is never written to #swap .
-
#Apple Patches Old Versions of #iOS to Keep #iMessage and #FaceTime Running
Apple is renewing #certificates for iOS versions dating back to 2013 to keep the lights on a little longer.
#securityhttps://www.wired.com/story/apple-patches-older-ios-versions-to-keep-imessage-facetime-working/
-
Let's Encrypt для внутренних сайтов
Всем привет! Однажды администратор одного из внутренних сайтов предприятия попросил прописать TXT запись для получения Let's Encrypt сертификата, поскольку сайт не доступен снаружи и, нет возможности настроить проверку HTTP-01 . Через три месяца попросил прописать еще раз, для продления, потом появился второй такой сайт, и, стало очевидно, что процесс пора автоматизировать. Уже перед публикацией нашлась отличная статья с полезными комментариями, автору понадобилась та же проверка DNS-01 и стандарт RFC 2136 для автоматизации выпуска wildcard сертификата Так, что, предлагаю краткую “шпаргалку с заменой по Ctrl+H”, для тех, кто использует сервер DNS сервер bind и хочет делегировать выпуск/проверку Let`s Encrypt сертификатов для внутренних сайтов сторонним подразделениям.
-
Let's Encrypt для внутренних сайтов
Всем привет! Однажды администратор одного из внутренних сайтов предприятия попросил прописать TXT запись для получения Let's Encrypt сертификата, поскольку сайт не доступен снаружи и, нет возможности настроить проверку HTTP-01 . Через три месяца попросил прописать еще раз, для продления, потом появился второй такой сайт, и, стало очевидно, что процесс пора автоматизировать. Уже перед публикацией нашлась отличная статья с полезными комментариями, автору понадобилась та же проверка DNS-01 и стандарт RFC 2136 для автоматизации выпуска wildcard сертификата Так, что, предлагаю краткую “шпаргалку с заменой по Ctrl+H”, для тех, кто использует сервер DNS сервер bind и хочет делегировать выпуск/проверку Let`s Encrypt сертификатов для внутренних сайтов сторонним подразделениям.
-
Let's Encrypt для внутренних сайтов
Всем привет! Однажды администратор одного из внутренних сайтов предприятия попросил прописать TXT запись для получения Let's Encrypt сертификата, поскольку сайт не доступен снаружи и, нет возможности настроить проверку HTTP-01 . Через три месяца попросил прописать еще раз, для продления, потом появился второй такой сайт, и, стало очевидно, что процесс пора автоматизировать. Уже перед публикацией нашлась отличная статья с полезными комментариями, автору понадобилась та же проверка DNS-01 и стандарт RFC 2136 для автоматизации выпуска wildcard сертификата Так, что, предлагаю краткую “шпаргалку с заменой по Ctrl+H”, для тех, кто использует сервер DNS сервер bind и хочет делегировать выпуск/проверку Let`s Encrypt сертификатов для внутренних сайтов сторонним подразделениям.
-
Let's Encrypt для внутренних сайтов
Всем привет! Однажды администратор одного из внутренних сайтов предприятия попросил прописать TXT запись для получения Let's Encrypt сертификата, поскольку сайт не доступен снаружи и, нет возможности настроить проверку HTTP-01 . Через три месяца попросил прописать еще раз, для продления, потом появился второй такой сайт, и, стало очевидно, что процесс пора автоматизировать. Уже перед публикацией нашлась отличная статья с полезными комментариями, автору понадобилась та же проверка DNS-01 и стандарт RFC 2136 для автоматизации выпуска wildcard сертификата Так, что, предлагаю краткую “шпаргалку с заменой по Ctrl+H”, для тех, кто использует сервер DNS сервер bind и хочет делегировать выпуск/проверку Let`s Encrypt сертификатов для внутренних сайтов сторонним подразделениям.
-
What a project. Did configure StepCA in my home-lab with a real physical HSM for the CA's private key. Using a SmartcardHSM (https://www.smartcard-hsm.com) from CardContact Systems.
Now I have acme (automated cert provisioning) working internally as long as the HSM is plugged into my server.
All running in an isolated FreeBSD 15-RELEASE jail (StepCA compiled from source with added PCSC-Lite support and usb device passed through by devfs rules).
Yay! It works!
#freebsd #stepca #devops #acme #certificates #tls #smartcard #hsm
-
#Development #Announcements
Let’s Encrypt’s new certificates · 6-day and IP address certificates now generally available https://ilo.im/169wdw_____
#LetsEncrypt #CA #Certificates #Https #TSL #Domain #IpAddress #WebDev #Frontend #Backend -
Security, by @vikvanderlinden.bsky.social and @gertjan.fr (@httparchive.org):
https://almanac.httparchive.org/en/2025/security
#webalmanac #studies #research #metrics #security #tls #certificates #cookies #csp #httpheaders #apis #sanitization #configuration
-
Security, by @vikvanderlinden.bsky.social and @gertjan.fr (@httparchive.org):
https://almanac.httparchive.org/en/2025/security
#webalmanac #studies #research #metrics #security #tls #certificates #cookies #csp #httpheaders #apis #sanitization #configuration
-
Security, by @vikvanderlinden.bsky.social and @gertjan.fr (@httparchive.org):
https://almanac.httparchive.org/en/2025/security
#webalmanac #studies #research #metrics #security #tls #certificates #cookies #csp #httpheaders #apis #sanitization #configuration
-
Security, by @vikvanderlinden.bsky.social and @gertjan.fr (@httparchive.org):
https://almanac.httparchive.org/en/2025/security
#webalmanac #studies #research #metrics #security #tls #certificates #cookies #csp #httpheaders #apis #sanitization #configuration
-
Security, by @vikvanderlinden.bsky.social and @gertjan.fr (@httparchive.org):
https://almanac.httparchive.org/en/2025/security
#webalmanac #studies #research #metrics #security #tls #certificates #cookies #csp #httpheaders #apis #sanitization #configuration
-
#Development #Pitfalls
The dangers of SSL certificates · What if automated certificate renewal fails? https://ilo.im/169g9s_____
#Renewals #Certificates #SSL #TSL #HTTPS #Automation #DevOps #WebDev #Backend -
Upcoming Changes to Let’s #Encrypt #Certificates - #API Announcements - #LetsEncrypt Community Support
Let’s Encrypt is introducing several updates to the certificates we issue, including new #rootCertificates , deprecation of #TLS client #authentication , & shortening certificate lifetimes. To help roll out changes gradually, we’re making use of ACME profiles to allow users to have control over when some of these changes take place. For most users, no action required
https://community.letsencrypt.org/t/upcoming-changes-to-let-s-encrypt-certificates/243873
-
Upcoming Changes to Let's Encrypt Certificates
https://community.letsencrypt.org/t/upcoming-changes-to-let-s-encrypt-certificates/243873
#HackerNews #Upcoming #Changes #to #Encrypt #Certificates #Changes #SSL #Certificates #Cybersecurity #WebSecurity
-
10 Years of Let's Encrypt #Certificates
https://letsencrypt.org/2025/12/09/10-yearsMindblowing statistics of this extremely important project, delivering #security and #privacy for billions of people, protecting us from all sorts of attacks.
Still a shame that even important #infrastructure like that is depending on #corporate #money and not #publicmoney.
-
10 Years of Let's Encrypt #Certificates
https://letsencrypt.org/2025/12/09/10-yearsMindblowing statistics of this extremely important project, delivering #security and #privacy for billions of people, protecting us from all sorts of attacks.
Still a shame that even important #infrastructure like that is depending on #corporate #money and not #publicmoney.
-
10 Years of Let's Encrypt #Certificates
https://letsencrypt.org/2025/12/09/10-yearsMindblowing statistics of this extremely important project, delivering #security and #privacy for billions of people, protecting us from all sorts of attacks.
Still a shame that even important #infrastructure like that is depending on #corporate #money and not #publicmoney.
-
10 Years of Let's Encrypt #Certificates
https://letsencrypt.org/2025/12/09/10-yearsMindblowing statistics of this extremely important project, delivering #security and #privacy for billions of people, protecting us from all sorts of attacks.
Still a shame that even important #infrastructure like that is depending on #corporate #money and not #publicmoney.
-
10 Years of Let's Encrypt #Certificates
https://letsencrypt.org/2025/12/09/10-yearsMindblowing statistics of this extremely important project, delivering #security and #privacy for billions of people, protecting us from all sorts of attacks.
Still a shame that even important #infrastructure like that is depending on #corporate #money and not #publicmoney.
-
#Development #Announcements
Decreasing certificate lifetimes · Let’s Encrypt will halve certificate validity by 2028 https://ilo.im/168u4u_____
#LetsEncrypt #CA #Certificates #Https #TSL #DNS #Website #WebDev #Frontend #Backend -
Germany marks 70th anniversary of Bundeswehr armed forces https://www.byteseu.com/1534198/ #70thAnniversary #CentralEvent #certificates #GermanArmedForces #GermanDemocracy #Germany #MinisterOfDefense #TheodorBlank
-
Germany marks 70th anniversary of Bundeswehr armed forces https://www.byteseu.com/1534198/ #70thAnniversary #CentralEvent #certificates #GermanArmedForces #GermanDemocracy #Germany #MinisterOfDefense #TheodorBlank
-
Als u twijfelt over de echtheid (authenticiteit) van een website, kunt u meer doen dan het certificaat in uw browser checken (voor zover uw browser dat überhaupt mogelijk maakt). Twee voorbeelden:
1️⃣ Check het certificaat online. Nb. deze website is soms erg traag of geeft vreemde fourmeldingen door timeouts.
• Open https://crt.sh/?a=1
• Vink aan: "Deduplicate (pre)certificate pairs?"
• Vink evt. aan: "Exclude expired certificates?"
• Vul de kale websitenaam in (zonder https:// ervoor en zonder / erachter).
In het linker plaatje (nepsite) ziet u dat de nepsite 2x een certificaat had met daartussen 3 jaar niets. Rechts de echte site. Daaronder van beide sites de belangrijkste details in het laatste certificaat.
2️⃣ Check VirusTotal (een website overgenomen door Google die met bijna 100 virusscanners ook websites checkt (voor zover mogelijk).
• Open https://virustotal.com
• Kies voor "URL" als u een link wilt laten checken, of "SEARCH" als u een websitenaam wilt invoeren (en bestaande resultaten wilt bekijken).
Bijv. in https://www.virustotal.com/gui/domain/mijn-kpn.info/detection ziet u dat momenteel 5 (van 95!) virusscanners kwaad zien in de nepsite, en twee aanvullende "suspicious" melden.
#DV #DomainValidated #Certificates #VirusTotal #crt_sh #EV #ExtendedValidation #OV #OrganizationValidated
-
@letsencrypt any more news on when the short lived profile (and IP address SAN entries) will go live on production?
Or if I can get added to the test group?
-
There are growing challenges in managing cryptographic assets while preparing for the emerging risks of quantum computing.
Pradeep, Parameshwaran, STSM , Chief Architect , #Security and Compliance on #IBMZ and #LinuxONE will talk on how we can provide a centralized approach to discovering, classifying, and managing cryptographic keys and #certificates across applications and systems, ensuring visibility and #compliance. This session will focus on partner point of view on #Quantum Safe #cryptography , followed by details on IBM Quatum Safe Explorer product and #IBM zCDI product.Register here:
https://events.teams.microsoft.com/event/a0807b34-4108-4427-ad10-39e861a44491@fcf67057-50c9-4ad4-98f3-ffca64add9e9 -
Certbot only got a PR to enable IP address support with LetsEncrypt today.
Does anybody know of a ACME client that has support?
I want to test some things (both with LetsEncrypt and my local SmallStep CA)
-
#Development #Challenges
Obnoxious SSL certificate requirements · How to deal with the growing certificate hassles? https://ilo.im/166ent_____
#Business #Company #TSL #SSL #Certificates #CA #DNS #Security #DevOps #WebDev -
That will be a no.
Which is a shame as I want to use SNI in the back end but also make use of AWS issued certificates and the NLB TLS integration since there is no easy way to get a cert from the AWS Certificate Manager to a EKS Secret
-
That will be a no.
Which is a shame as I want to use SNI in the back end but also make use of AWS issued certificates and the NLB TLS integration since there is no easy way to get a cert from the AWS Certificate Manager to a EKS Secret
-
Testing a theory on AWS, does a NLB terminating TLS forward the SNI header if the backend is also TLS?
Will know once AWS has finished pulling my test container.
-
Free certificates for IP addresses: security problem or solution? https://www.malwarebytes.com/blog/news/2025/07/free-certificates-for-ip-addresses-security-problem-or-solution #certificates #039;sEncrypt #Awareness #padlock #News #Let&
