home.social

#zerossl — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #zerossl, aggregated by home.social.

  1. ZeroSSL - Please add IPv6 support and a DNS-PERSIST-01 validation method. #ZeroSSL #IPv6 #SSL #TLS #certificates #networking

  2. ZeroSSL - Please add IPv6 support and a DNS-PERSIST-01 validation method. #ZeroSSL #IPv6 #SSL #TLS #certificates #networking

  3. ZeroSSL - Please add IPv6 support and a DNS-PERSIST-01 validation method. #ZeroSSL #IPv6 #SSL #TLS #certificates #networking

  4. Oh joy. Nothing like an early Sunday morning surprise: your website is down, and you realize you forgot about your Buypass certificate’s expiry date. Anyway, a quick ACME client reconfiguration and I’ve switched over to another European provider, ZeroSSL. Problem solved. #SysAdminLife #WebsiteDown #TLS #HTTPS #ACME #Buypass #ZeroSSL #Developer #Fail #SundayMorning

  5. Oh joy. Nothing like an early Sunday morning surprise: your website is down, and you realize you forgot about your Buypass certificate’s expiry date. Anyway, a quick ACME client reconfiguration and I’ve switched over to another European provider, ZeroSSL. Problem solved. #SysAdminLife #WebsiteDown #TLS #HTTPS #ACME #Buypass #ZeroSSL #Developer #Fail #SundayMorning

  6. Oh joy. Nothing like an early Sunday morning surprise: your website is down, and you realize you forgot about your Buypass certificate’s expiry date. Anyway, a quick ACME client reconfiguration and I’ve switched over to another European provider, ZeroSSL. Problem solved. #SysAdminLife #WebsiteDown #TLS #HTTPS #ACME #Buypass #ZeroSSL #Developer #Fail #SundayMorning

  7. Oh joy. Nothing like an early Sunday morning surprise: your website is down, and you realize you forgot about your Buypass certificate’s expiry date. Anyway, a quick ACME client reconfiguration and I’ve switched over to another European provider, ZeroSSL. Problem solved. #SysAdminLife #WebsiteDown #TLS #HTTPS #ACME #Buypass #ZeroSSL #Developer #Fail #SundayMorning

  8. Anyone know a European alternative to LetsEncrypt?

    And I mean: get a free (or very reasonably priced) certificate for a private web site with one or two sub-domains?

    #letsencrypt #zerossl #europe #eu #web #hosting

  9. Hmm, ejabberd seems unable to acquire TLS certificates from ZeroSSL, failing on requesting HEAD https://acme.zerossl.com/v2/DV90/newNonce with HTTP error: unexpected content type: application/octet-stream...

    Not sure who to report that to.

    #XMPP #ejabberd #ACME #ZeroSSL

  10. @mirabilos
    I use #zerossl for my web and mail servers.

    https://zerossl.com/

    I no longer use certbot but acme.sh to generate certificates.

    ZeroSSL is the default CA for https://acme.sh/

    edit: I fall back to letsencrypt when I need a wildcard cert such as *.domain.tld

  11. I recently started to replace #nginx with @caddy and it's as satisfying as it is scary to replace a complex config that spans five included files and a total of about 400 lines with a single Caddyfile of around 80 lines.

    And on top of that #Caddy also made certbot redundant as it takes care of fetching and renewing the tls certs from #LetsEncrypt and keeps a #ZeroSSL backup for all of my domains.

    I think I'm in love..

  12. Switching my Caddy server to use ZeroSSL for AMCE SSL certification, replacing LetsEncrypt, was as easy as adding this to my Caddyfile:

    {
        acme_ca https://acme.zerossl.com/v2/DV90
    }
    

    #CaddyServer #Caddy #SSL #ACME #LetsEncypt #ZeroSSL

  13. @jpmens what are other #ACME providers except of @letsencrypt and where are they located?

    @european_alternatives lists only one (#BuypassGoSSL) so far:
    european-alternatives.eu/categ

    #ZeroSSL itself seems to be Austria-based, but is a subsidiary of HID Global (Texas, US) which again is a subsidiary of ASSA Abloy (Sweden), so it being independent from US-shenanigans is not quite clear.

    We should probably start shipping a "ca-certififcates-eu" package in distributions...

  14. finally my #nextcloud deploy & provisioning project is done and deployed managed by using #packer #terraform #hetzner #ansible #RockyLinux #GitLabCICD #backup + #restore later I'll change cert from #letsencrypt to #zerossl provider :catjam:

  15. #TIL #Caddy is not only a great general-purpose #http server with automatic #https handling (via #letsencrypt and #zerossl). It also has a layer 4 module that can make it terminate #tls for arbitrary #tcp services and still handle certificates automatically. I just used it to tls-terminate a #redis db and it works like a charm!

    github.com/mholt/caddy-l4

  16. @rmbolger @ainmosni Hmm, #ZeroSSL might be worth a look for #TLS certificates, they seem to be based in Germany.

    And it looks like someone's done the the hard work of integrating it with #Traefik: spad.uk/posts/get-free-zerossl

  17. Is there any reason you might want to use #ZeroSSL or Google Trust Services instead of #LetsEncrypt? #ACME

  18. If you know anyone using #ZeroSSL they're at risk of having their private cert keys stolen: ZeroSSL: XSS leading to session hijacking, stealing a private key (and a password hash) groups.google.com/a/ccadb.org/

  19. Took me a while, but I finally finished my first tutorial. Hope it's useful for someone:

    Self-hosted Adguard Home, DoT and SSL certificate on Android.

    blog.catfluori.de/2023/01/13/s

    Feel free to comment on it, to report issues and suggest improvements. Enjoy :-)

    #Android #AdGuardHome #DNS #DNS-over-TLS #Linux #ZeroSSL

  20. I love having my own internal Domain and using acme dns api for getting certificates for internal Services #letsencrypt #zerossl