dansup: "Letsencrypt is going to revoke 3,048,289 certific…" - Mastodon

dansup @dansup@mastodon.social

Letsencrypt is going to revoke 3,048,289 certificates tomorrow that "may" have been wrongfully issued due to a wrong CAA DNS check.

To check if you're affected, and need to re-issue certs (before tomorrow!), check here:

https://letsencrypt.org/caaproblem/

Mar 03, 2020, 20:25 · · Web · · ·

Mar 03, 2020, 20:26

LABB @abbluiz@mastodon.social

Mar 03, 2020, 21:15

🍁 Kicou 🇨🇦 @kicou@kicou.info

@dansup I force-renewed all certs, it was faster than checking whether I am affected or not or to wait for an email.

They are revoking on March 4 at 00:00 UTC, which is in... less than 3 hours?

Mar 03, 2020, 21:40

Adrian Cochrane @alcinnz@floss.social

@dansup I've checked, I'm fine.

Mar 03, 2020, 22:31

Ben Lubar (any pronouns) @ben@lubar.me

@dansup tbh it's easier to just re-issue certs

Mar 04, 2020, 04:50

Manuel Viens @manu@mastodon.fedi.quebec

Après vérifications, le domaine et les sous-domaines de #FédiQuébec sont "OK" à ce sujet.
"It is not one of the certificates affected by the Let's Encrypt CAA rechecking problem."
#LetsEncrypt

Mar 04, 2020, 18:22

donpdonp @donpdonp@mastodon.xyz

@dansup as easy way to check for invalid domains with letsencrypt: $ curl -d 'fqdn=example.com' https://checkhost.unboundtest.com/checkhost

Sign in to participate in the conversation