Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 17 submissions in the queue.
posted by n1 on Tuesday November 10 2015, @07:37PM   Printer-friendly
from the help-us-wring-out-our-beta dept.

El Reg reports:

Hoping to expand the pool of Let's Encrypt testers, TrueCrypt audit project co-founder Kenneth White has run up a set of scripts to automate the process of installing certificates under the Mozilla-backed open CA.

White, co-director of the Open Crypto Audit Project, has posted the work at Github, here. He explains that the project is quite simple, consisting of Python scripts to "stand up the official Let's Encrypt certificate management ACME client tool" in the target environments.

These include Debian, Amazon's Linux (for AWS), CentOS, RedHat, and FreeBSD.

[...]White says [...] the official client "can be fragile and error-prone on some systems".

Having had to batter his own head against the client, White [...] says he cleaned up the process in his scripts to make Let's Encrypt more accessible to other users.

He warns against running either the Let's Encrypt client or his scripts in production systems:

"LE is still in beta and has some rough edges", White notes, "including silently invoking sudo and installing quite a few development packages".

Previous: The "Let's Encrypt" Project Generates Root and Intermediate Certificates
Let's Encrypt Has Issued Its First Gratis SSL/TLS Certificate


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 0) by Anonymous Coward on Tuesday November 10 2015, @08:26PM

    by Anonymous Coward on Tuesday November 10 2015, @08:26PM (#261417)

    I still have to connect to open wifi networks. https plz.

  • (Score: 2) by Zinho on Tuesday November 10 2015, @09:04PM

    by Zinho (759) on Tuesday November 10 2015, @09:04PM (#261430)

    I still have to connect to open wifi networks. https plz.

    Yep, that's what this project is trying to make happen. The LetsEncrypt.org domain is enabled by default in the EncryptedWeb add-on for Pale Moon, so they're leading by example. The sooner Web administrators have easy access to self-signed certificates trustable by everyone's browsers the better off we'll all be.

    --
    "Space Exploration is not endless circles in low earth orbit." -Buzz Aldrin
    • (Score: 4, Informative) by draconx on Tuesday November 10 2015, @09:31PM

      by draconx (4649) on Tuesday November 10 2015, @09:31PM (#261440)

      I still have to connect to open wifi networks. https plz.

      Yep, that's what this project is trying to make happen ... The sooner Web administrators have easy access to self-signed certificates trustable by everyone's browsers the better off we'll all be.

      These aren't self-signed certs. They are domain validated (DV) certs signed by the Let's Encrypt certificate authority.

      • (Score: 2) by Zinho on Wednesday November 11 2015, @02:39PM

        by Zinho (759) on Wednesday November 11 2015, @02:39PM (#261732)

        Even better, thanks for the correction.

        --
        "Space Exploration is not endless circles in low earth orbit." -Buzz Aldrin