this post was submitted on 17 Apr 2025
30 points (96.9% liked)

Sysadmin

6380 readers
3 users here now

A community dedicated to the profession of IT Systems Administration

founded 6 years ago
MODERATORS
DarraignTheSane@lemmy.ml
gregf@lemmy.ml
Avian_Carrier@lemmy.ml
MentallyExhausted@reddthat.com
DarraignTheSane@lemmy.world
30
TLS Certificate Lifetimes Will Officially Reduce to 47 Days (www.digicert.com)
submitted 3 months ago by exu@feditown.com to c/sysadmin@lemmy.ml
10 comments fedilink hide all child comments
 

cross-posted from: https://feditown.com/post/1233561

you are viewing a single comment's thread
view the rest of the comments
[–] 0p3r470r@lemm.ee 1 points 3 months ago (1 children)

So would I have to buy a new cert every 47 days?

[–] Rogue@feddit.uk 0 points 3 months ago (2 children)

Free certificates have existed for a long time now from providers like Let's Encrypt and ZeroSSL.

[–] 0p3r470r@lemm.ee 1 points 3 months ago

Im aware. And I haven’t had to deal with certs in a long time. When I had to purchase them, it was typically thru godaddy. Looks like my former employer is going to have fun time.

[–] MrPommeroy@lemmy.world 1 points 3 months ago

There are still many apps that don't play nice with automated certificate replacements. I manage a few systems where the entire server needs rebooting, to work properly afterwards. One where a corresponding client-software has to be recompiled and updates distributed simultaneously with the replacement. And one where the certificate and key together needs to be uploaded manually in three different UIs.