SoylentNews is people
SoylentNews
I just finished updating the certs for SoylentNews.
We get our certs through Let's Encrypt. Yes, we could automate the whole process, but it has been discussed and decided that given our... unique configuration, it is best to have a human in the loop than to let a script somehow run amok and then try to restore things when who-all-knows-what got deployed and things have gone sideways.
I have checked our web sites for production, dev, and staff as well as sending and retrieving e-mail; all seemed to be okay.
More than anything else, this is a check on us to see if we (well, me, actually) overlooked anything. If you do detect any issues, please post a comment to this story.
(Hat tip to The Mighty Buzzard for standing by in case I bollixed up something.)
[Update: Unless, of course, you cannot post a comment to this story! Then pop onto the #Soylent channel on our Internet Relay Chat (IRC) server and let us know over there. --martyb]
(Score: 2) by martyb on Thursday August 22 2019, @02:57PM
Our certs from Let's Encrypt (LE) are free. That fits in well with our [limited] budget.
As you can see from these URLs (cannot seem to get them to appear as actual links, sorry!):
LE certs are good for up to 90 days. We still had a couple weeks' time before the old certs were due to expire.
It is my understanding that LE certs cannot be renewed at less than 60 days (or so) after they were issued.
In short, the certs were updated earlier than was needed. And, to clarify, it is not so much that upgrading certs is difficult, but that it is somewhat tedious and exacting.
Wit is intellect, dancing.