Thread: talk.maemo.org certificate expired!
View Single Post
mosen's Avatar
mosen is offline mosen
2017-08-03 , 12:24
Community Council | Posts: 1,669 | Thanked: 10,225 times | Joined on Nov 2014 @ Lower Rhine
#6
We discussed briefly in last maemo meeting.
I am a big fan of letsencrypt also mostly for the auto-renewal scripts.

But it is highly likely that renewal of the startcom cert is much less work for tech-staff than to change the running system?

Although recent developments suggest to move away from Startcom as Google and Mozilla decided to distrust them(?):

https://en.wikipedia.org/wiki/StartCom
In August 2016 it was reported that StartCom was sold to WoSign, a Chinese CA.[14][27][28] The original disclosure was taken down for legal reasons.[29] However, repostings of the original articles are still available.[27] The relationship is unclear, but it seems as if the StartCom technical infrastructure was being used by WoSign when they were caught issuing about a hundred[30] improperly validated SSL certificates, including a certificate for github.com.[14][31]

An investigation by Google and Mozilla found that WoSign knowingly and intentionally mis-issued certificates in order to circumvent browser restrictions and CA requirements. As a result, Google joined Mozilla and Apple and will distrust WoSign and StartCom certificates beginning in 2017. [32] On July 17, 2017, an announcement was made about the restructuring of the company. It was announced that Startcom is now 100% managed by Qihoo360, no Startcom employees are working on Wosign premises, audits have been made by external pen testers, and a new CMS system was developed.
__________________
Watch our weird watchfaces for mighty AsteroidOS
Performance comparison Video Sailfish 2.0 vs 1.1.9 vs 1.1.7
[MC eV] Maemo Community eV membership application please concider to join!
 

The Following 6 Users Say Thank You to mosen For This Useful Post: