misk@sopuli.xyz to Technology@lemmy.worldEnglish · 4 days agoLet's Encrypt Announces New-Certificate-Every-6-Days Offeringletsencrypt.orgexternal-linkmessage-square102fedilinkarrow-up1365arrow-down18file-text
arrow-up1357arrow-down1external-linkLet's Encrypt Announces New-Certificate-Every-6-Days Offeringletsencrypt.orgmisk@sopuli.xyz to Technology@lemmy.worldEnglish · 4 days agomessage-square102fedilinkfile-text
via https://it.slashdot.org/story/24/12/15/0059216/lets-encrypt-announces-new-certificate-every-6-days-offering
minus-squareoldfart@lemm.eelinkfedilinkEnglisharrow-up3·3 days agoYeah, now imagine pinning certs that change weekly. My first thought is that old school secure software (like claws-mail) treats a cert change as a minor security incident, asking you to confirm every time. Completely different school of thought.
minus-squarejagged_circle@feddit.nllinkfedilinkEnglisharrow-up1·edit-23 days agoYou can pin to your own CA. Then it doesn’t matter if you want to update your certs frequently.
Yeah, now imagine pinning certs that change weekly.
My first thought is that old school secure software (like claws-mail) treats a cert change as a minor security incident, asking you to confirm every time. Completely different school of thought.
You can pin to your own CA. Then it doesn’t matter if you want to update your certs frequently.
Right