conansysadmin, to linux
@conansysadmin@mstdn.social avatar

With the proper documents, any may pass and be trusted. https://cromwell-intl.com/open-source/letsencrypt-tls-cert-godaddy.html?s=mc

conansysadmin, to linux
@conansysadmin@mstdn.social avatar

With the proper documents, any may pass and be trusted. https://cromwell-intl.com/open-source/letsencrypt-tls-cert-godaddy.html?s=mc

metabrainz, to random
@metabrainz@mastodon.social avatar

Yet another tale of shitty companies ripping off little charities. This time it’s SSL*com who have enriched themselves.

If you are with SSL*com for your SSL/TLS certificates:

  1. Check your invoices for extra charges
  2. Swap over to the nonprofit Let’s Encrypt!


https://blog.metabrainz.org/2024/04/23/ssl-com-is-evil-and-deceptive-dont-do-business-with-ssl-com

conansysadmin, to opensource
@conansysadmin@mstdn.social avatar

By consulting the proper documents, one may speak a secure and secret tongue. https://cromwell-intl.com/open-source/google-freebsd-tls/tls-certificate.html?s=mc

governa, to Synology
@governa@fosstodon.org avatar

How to Generate SSL Certificate using DNS-01 Challenge and Use it on NAS

https://linuxhint.com/generate-letsencrypt-synology-nas/

zirias, to windows
@zirias@techhub.social avatar

Goal: Get some #letsencrypt certificate obtained with #uacme deployed on some #Windows box

Step 1: Ok, this probably works best with #Powershell (which I don't really like ...)

Step 2: There's no #FreeBSD port ... but hey, there's now a FreeBSD port of #dotnet, let's try to "just" build Powershell using that.

Step 3: Hell why does it fail to build. Oh, System.Security.Cryptography.Native doesn't play well with #LibreSSL

Patch and retry, I guess I'll take some sleep now first. Bah!

(there's some irony in running into OpenSSL/LibreSSL issues when trying to deploy TLS certificates ...)

bazcurtis, to homeassistant
@bazcurtis@mastodon.social avatar

I am going to try to setup Let’s Encypt on my Home Assistant server this weekend.

This article looks very helpful.

https://theprivatesmarthome.com/how-to/enable-https-using-lets-encrypt-in-home-assistant/

vwbusguy, to firefox
@vwbusguy@mastodon.online avatar

Well, this is interesting.

vwbusguy,
@vwbusguy@mastodon.online avatar

@deathkitten So far, I'm able to reproduce it with certs issued from , , and , both fresh and a month or two old.

Firefox 123.0.1 doesn't trust any of them.

Again, it still works because the OS CA trust includes it, so most users won't notice anything broken (yet).

matthew, to random
@matthew@social.retroedge.tech avatar

Dealing with paid SSL certificates can be confusing. makes it so much easier.

governa, to random
@governa@fosstodon.org avatar

Banish OEM self-signed certs forever and roll your own private

https://arstechnica.com/information-technology/2024/03/banish-oem-self-signed-certs-forever-and-roll-your-own-private-letsencrypt/

conansysadmin, to linux
@conansysadmin@mstdn.social avatar

With the proper documents, any may pass and be trusted. https://cromwell-intl.com/open-source/letsencrypt-tls-cert-godaddy.html?s=mc

conansysadmin, to opensource
@conansysadmin@mstdn.social avatar

By consulting the proper documents, one may speak a secure and secret tongue. https://cromwell-intl.com/open-source/google-freebsd-tls/tls-certificate.html?s=mc

poppastring, to random
@poppastring@dotnet.social avatar

I was late renewing my site cert for Lets' Encrypt and I am now inexplicably getting a rate limit warning when trying to renew.

I was late, I never tried to renew, so I am really confused by the error.

metabrainz, to random
@metabrainz@mastodon.social avatar

A small step - we have arranged a small annual koha (donation) to some of our open source upstream projects.

Thank you for everything -a

https://blog.metabrainz.org/2024/03/04/supporting-upstream-open-source-projects/

vwbusguy, to Kubernetes
@vwbusguy@mastodon.online avatar

If you run certs, you should probably be paying attention to this. cert-manager is impacted.

https://letsencrypt.org/2023/07/10/cross-sign-expiration

https://cert-manager.io/docs/releases/release-notes/release-notes-1.14/#known-issues

governa, to random
@governa@fosstodon.org avatar

11 Best Free Certificate Providers in 2024

https://www.tecmint.com/best-ssl-certificate-authorities/

beepcheck,
@beepcheck@fosstodon.org avatar

@governa and here i thought there was only

voltagex, to random
@voltagex@aus.social avatar

Sees scam site registered at namecheap and hosted behind cloudflare

Oh, that's just going to exist forever.

voltagex,
@voltagex@aus.social avatar

@gsuberland have told me to fuck off in more words before, so I don't bother.

I didn't think did anything about scam sites?

senzilla, to random

The acme-client tool must be the best thing since sliced bread. Seriously.

dereulenspiegel, to TrueNAS German
@dereulenspiegel@chaos.social avatar

In case someone wants to use to issue certificates for their server I created a small shell script which can be used as validator script https://github.com/dereulenspiegel/desec_truenas

thomas, to infosec
@thomas@metalhead.club avatar

Are there already elegant solutions for distributing Let's Encrypt certificates to multiple hosts?

Of course, you can have each host request certificates individually, but then you run into ACME API limits at Let's Encrypt relatively quickly, depending on the number of hosts and simultaneous accesses.

I do not want to have to fiddle around.

Joe, to selfhosted

So I got a Raspberry Pi 4 for Christmas and I think I’m going to use it to go with certain services and educate myself on . Do any mastonauts have resource recommendations for me? Complete linux/networking noob here.
——
He recibido un 4 por navidad y estoy pensando en usarlo para aprender sobre y . ¿Algún mastonauta con recomendaciones de recursos con los que aprender? Novato absoluto en linux y redes informáticas.

hook,
@hook@toot.si avatar

@Joe, what I love about is that it’s not just a one-click install for web apps like etc., but everything else:

• setting up SSL is literally just one click and poof you’ve got set up
• (sub)domains are equally simple to handle
• for it diagnoses what’s wrong and offers copy-paste entries (for some registrars even a single-click import)
? automatic

The only thing I had to get my hands dirty with was setting on the router.

eff, to random
@eff@mastodon.social avatar

The journey to 100% HTTPS can be achieved with bolder pushes to encrypt the web. https://www.eff.org/deeplinks/2023/12/year-review-last-mile-encrypting-web

genebean, to selfhosted
@genebean@fosstodon.org avatar

I’m pretty stoked to see that there is support for doing a dns challenge to Gandi with the library uses to obtain Let’s Encrypt certificates for use with . This is going to be nice for a server that isn’t directly exposed to the internet.
[ ]

strobelstefan, to random German

Ein Let's Encrypt Zertifikat für die Nextcloud im eigenen Netzwerk

In diesem Beitrag geht es darum eine Nextcloud im eigenen Netzwerk mit einem offiziellen Let's Encrypt Zertifikat auszustatten, die eigentlich NICHT über das Internet erreichbar ist.

https://strobelstefan.de/blog/2023/12/10/ein_eigenes_lets_encrypt_zertifikat_f%C3%BCr_die_nextcloud_im_eigenen_netzwerk/

  • All
  • Subscribed
  • Moderated
  • Favorites
  • Leos
  • everett
  • magazineikmin
  • Youngstown
  • thenastyranch
  • rosin
  • slotface
  • ngwrru68w68
  • Durango
  • PowerRangers
  • kavyap
  • cisconetworking
  • tsrsr
  • DreamBathrooms
  • anitta
  • mdbf
  • tacticalgear
  • khanakhh
  • ethstaker
  • vwfavf
  • InstantRegret
  • modclub
  • osvaldo12
  • cubers
  • GTA5RPClips
  • normalnudes
  • tester
  • provamag3
  • All magazines
    •