[haiku-webkit-commits] Re: SSL cert expiration
- From: Urias McCullough <umccullough@xxxxxxxxx>
- To: haiku-webkit-commits@xxxxxxxxxxxxx, haiku-sysadmin@xxxxxxxxxxxxx, haiku-development@xxxxxxxxxxxxx
- Date: Mon, 4 Jul 2016 10:04:42 -0700
On Sat, Jul 2, 2016 at 6:18 PM, Urias McCullough <umccullough@xxxxxxxxx>
I will see about renewing it ASAP, but last time it required some back and
forth with the GlobalSign staff due to our non-profit status and multiple
domain use. It is also a holiday weekend here in the U.S.
As such, we may be using an expired cert for a few more days if I don't
get it resolved quickly.
New cert is in place on each of the servers.
I still need to update the postfix cert for our smtp server which I will do
in a bit.
It took some back and forth with globalsign as our SSL "grade" was only a
"B" with the qualys SSL checker, so they refused to grant us a free cert
until it was upgraded to an "A" - this was a little tricky due to the older
version of Apache that our servers use, and disabling the weak
diffie-hellman key exchange required fiddling with the ciphersuites again.
Other related posts: