076萌SNS
  • Login

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. lamp (lamp@kitty.haus)'s status on Thursday, 16-May-2024 14:48:57 JST lamp lamp
    Why does #caddy renew local cert every day? Causes bit of hicup with cached cert...
    In conversation about 6 months ago from kitty.haus permalink

    Attachments


    1. https://lol-u.gay/media/0df349eebd4b7d912aad0957c5ef6a147773f42ba1846ad30aea646f06f741f0.png?name=image.png
    • francislavoie (francislavoie@phpc.social)'s status on Thursday, 16-May-2024 14:48:56 JST francislavoie francislavoie
      in reply to

      @lamp certs with shorter lifetimes are more secure because it reduces the impact of the private key is leaked/exposed/stolen by rotating it. With a cert with a long lifetime, the attacker can impersonate your site for as long as the cert remains valid. That's why let's encrypt certs are only 90 days instead of what was previously the industry standard of 5 years, it greatly lessens the impact of an exposure/leak.

      In conversation about 6 months ago permalink
      ミク初音 repeated this.
    • lamp (lamp@kitty.haus)'s status on Thursday, 16-May-2024 14:49:01 JST lamp lamp
      in reply to
      • francislavoie
      @francislavoie seems kinda moot if it's stored same place as the ca root cert
      In conversation about 6 months ago permalink
      ミク初音 likes this.

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

076萌SNS is a social network, courtesy of 076. It runs on GNU social, version 2.0.2-beta0, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All 076萌SNS content and data are available under the Creative Commons Attribution 3.0 license.