I had to delete all information for this domain just to add a exception...
Is the SSL cert getting updated soon?
“I am the dragon without a name…”
― Κυνικός Δράκων
I had to use Safari browser on a 1st generation iPAD just to view the forum!
Plan your life wisely, you'll be dead before you know it.
Yeah the vogons SSL cert is expired.
If your browser is to crappy to bypass an error for an expired SSL cert you may want to think about using a different browser.
https://www.google.com/search?q=https+strict+ … nsport+security
Changing browsers isn't going to do it, besides I already said I could create a exception here at the cost of deleting all information associated to this domain name.
Wasn't the SSL cert supposed to be setup for auto-renewal?
“I am the dragon without a name…”
― Κυνικός Δράκων
When I was trying to go here with Chrome a bit ago, it was saying that the site uses TSTL or something like that so the site was not allowing the bypassing.
Now it is working again. Did the SSL cert get renewed?
wrote:Yeah the vogons SSL cert is expired.
If your browser is to crappy to bypass an error for an expired SSL cert you may want to think about using a different browser.
Nah, I kind of liked that my mainstream browser didn't let me visit a site with an expired certificate. Anyway not a big deal of course, everything's back to normal anyway, just thought that "crappy" isn't exactly suitable for a browser doing the right thing.
Yeah the cert appears to have been renewed now. I hope it doesn't lapse like this again though...
“I am the dragon without a name…”
― Κυνικός Δράκων
It's a Let's Encrypt certificate, which means it should be renewing every 2 months or so. Strict Transport Security is also a little problematic with Let's Encrypt, or so I thought, with a certificate that will be expiring within 3 months, and with secondary signing authority that varies with which server signed it.
The easiest client, in my opinion, is called Dehydrated, and supports things like DNS-01 method, even with hooks that handle the requests, such as the CloudFlare DNS hook script. And it supports running on a daily cron job, where it will only renew if the certificate is within 30 days of expiring. Although the hook script (not necessary if you're not using CF) is a little heavy, Dehydrated itself is quite light, compared to the official client.
Everything should be working now again and measures have been taken to decrease the chance of it happening again.
Water flows down the stream
How to ask questions the smart way!
wrote:It's a Let's Encrypt certificate, which means it should be renewing every 2 months or so.
I also use a LE cert which renews every 3 months, managed through my web host, and they had at least a week during which all auto-renewals were failing... including my last one. Of course no one bothered to notify me or other affected customers (they blamed the issues on LE itself). *shrugs*
Another trick was to just turn your PC's clock back a few hours. 😀
wrote:Another trick was to just turn your PC's clock back a few hours. 😀
Yes, I started having problems before everyone else did (while it was still the 4th), and turns out that my time zone was set wrong (even though the hour was correct). 🤣
https://cloakedthargoid.wordpress.com/ - Random content on hardware, software, games and toys
