Let's Encrypt certificate
76 views
Skip to first unread message
rich T
Mar 3, 2020, 6:26:08 PM3/3/20
to weewx-user
FYI about Let's Encrypt Certificate
John Kline
Mar 3, 2020, 6:50:50 PM3/3/20
to weewx...@googlegroups.com
Q: How do I know if I’m using an affected certificate?
A: Here is an online tool that will show you: https://checkhost.unboundtest.com/ 1.8k
Or, on a Linux/BSD-like system, this command will show you example.com's current certificate serial number:
openssl s_client -connect example.com:443 -servername example.com -showcerts </dev/null 2>/dev/null | openssl x509 -text -noout | grep -A 1 Serial\ Number | tr -d :
You can see the list of all affected serial numbers at: https://letsencrypt.org/caaproblem/
On Mar 3, 2020, at 3:26 PM, rich T <storm...@gmail.com> wrote:
FYI about Let's Encrypt Certificate
--
You received this message because you are subscribed to the Google Groups "weewx-user" group.
To unsubscribe from this group and stop receiving emails from it, send an email to weewx-user+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/weewx-user/3ae15136-379b-43b2-9c0e-074d7c814c5f%40googlegroups.com.
Brice Ruth
Mar 4, 2020, 10:32:59 AM3/4/20
to weewx...@googlegroups.com
Also, no harm in just running certbot renew with --force-renewal. No guess work, you'll get a new cert that is guaranteed not affected.
Brice Ruth, FCD
Software Engineer, Madison WI
Software Engineer, Madison WI
To view this discussion on the web visit https://groups.google.com/d/msgid/weewx-user/5FB4D501-B3AB-4F30-B5D0-A28694418F3E%40johnkline.com.
Reply all
Reply to author
Forward
0 new messages