Describe what you would like us to do:

Let's Encrypt has discovered a bug in their CAA rechecking which is leading them to revoke a number of certificates on March 4. We should make sure all our Let's Encrypt based certificates are not afflicted by this problem, and rotate/renew/replace the ones that are.

When do you need this to be done by? (YYYY/MM/DD)

2020/03/04, so... tomorrow?

kevin commented 5 years ago

So, they indicated they mailed all the affected users they had emails for. Since they have mailed us in the past I assume they have our email and we haven't gotten such an email.

So, I think (knock on wood) we are safe.

If you see a cert that is affected, please do let us know.

Thanks for the heads up.

Metadata Update from @kevin:
- Issue close_status updated to: Fixed
- Issue status updated to: Closed (was: Open)

5 years ago

Metadata

Assignee

None

Tags

None

Blocking

None

Depending on

None

Priority

Needs Review

fedora-infrastructure

Source Code

#8717 Let's Encrypt is revoking certain certificates on March 4, cert rotation required Closed: Fixed 5 years ago by kevin. Opened 5 years ago by ngompa.

Describe what you would like us to do:

When do you need this to be done by? (YYYY/MM/DD)

Metadata

#8717 Let's Encrypt is revoking certain certificates on March 4, cert rotation required

Closed: Fixed 5 years ago by kevin. Opened 5 years ago by ngompa.