The CA/Browser Forum has officially voted to amend the TLS Baseline Requirements to set a schedule for shortening both the lifetime of TLS certificates.
I’m relieved this post didn’t mention Ansible. It’s nice we’ve avoided the irony of mentioning Ansible in a post also mentioning ‘serious’ or ‘modern’.
the concept of doing these processes manually becomes a total clusterfuck.
But it’s a known clusterfuck compared to the scary unknown of certs (and the boulder app).
I’m relieved this post didn’t mention Ansible. It’s nice we’ve avoided the irony of mentioning Ansible in a post also mentioning ‘serious’ or ‘modern’.
But it’s a known clusterfuck compared to the scary unknown of certs (and the boulder app).