Replicant web certificates update

Added by Paul Kocialkowski 8 months ago

The web certificates for the Replicant websites were renewed today, replacing the ones that had expired a few days ago!


Replies (3)

RE: Replicant web certificates update - Added by Fil Lupin 8 months ago

Hi Paul,
is it undirectly related to issue #1719 (http://redmine.replicant.us/issues/1719)?
Because executing

gpg --recv-key 4A80EB23

does not work actually for me.
Perhaps I did not followed some steps, do you have any idea of which ones?

RE: Replicant web certificates update - Added by Tiberiu-Cezar Tehnoetic 8 months ago

Hi Fil! It's not related. Here Paul was announcing SSL website certificates (X.509 standard) signed by a certificate authority, CAcert, and part of the public key infrastructure (PKI). Those are different from web of trust keys (OpenPGP standard) issued by individuals.

Please note I've just replied to the issue you described: https://redmine.replicant.us/issues/1719#note-2

Paul, Let's Encrypt certificates are recognized by all browsers/systems, could we use these for *.replicant.us instead of CAcert or is there a reason why we should prefer CAcert? Thanks!

RE: Replicant web certificates update - Added by Jeremy Rand 8 months ago

Tiberiu-Cezar Tehnoetic wrote:

Paul, Let's Encrypt certificates are recognized by all browsers/systems, could we use these for *.replicant.us instead of CAcert or is there a reason why we should prefer CAcert? Thanks!

Agreed, I would very much prefer Let's Encrypt.

(1-3/3)