this post was submitted on 17 Apr 2025
30 points (96.9% liked)

Sysadmin

6380 readers
3 users here now

A community dedicated to the profession of IT Systems Administration

founded 6 years ago
MODERATORS
DarraignTheSane@lemmy.ml
gregf@lemmy.ml
Avian_Carrier@lemmy.ml
MentallyExhausted@reddthat.com
DarraignTheSane@lemmy.world
30
TLS Certificate Lifetimes Will Officially Reduce to 47 Days (www.digicert.com)
submitted 3 months ago by exu@feditown.com to c/sysadmin@lemmy.ml
10 comments fedilink hide all child comments
 

cross-posted from: https://feditown.com/post/1233561

you are viewing a single comment's thread
view the rest of the comments
[โ€“] qaz@lemmy.world 5 points 3 months ago* (last edited 3 months ago) (1 children)

Security, a malicious individual could mitm or impersonate another server when the private key is leaked. Reducing the timespan from the current 398 days reduces the amount of time compromised certificates can be used. It is possible to revoke certificates, but I think this is for cases when devices are unable to receive those messages.

[โ€“] ReakDuck@lemmy.ml 2 points 3 months ago

Ah thanks for explaining. Now it makes sense