StartCom/StartSSL SSL Cert for micro-manager.org no longer valid for future browser updates

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

StartCom/StartSSL SSL Cert for micro-manager.org no longer valid for future browser updates

Christian Carsten Sachs
Hello,


just a little something I noticed recently; I'm using Chrome dev releases (currently 58), and it marks connections to https://micro-manager.org as unsafe. Checking the cert, I found that, while current stable Chrome/Firefox still trust the StartCom's root certificate, apparently they've fallen in distrust with these two browser vendors due to malpractice [ https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/ ].


As the certificate must be renewed in April anyways, a different CA could be used, e.g. Let's Encrypt.


Best regards,

Christian


------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------
Forschungszentrum Juelich GmbH
52425 Juelich
Sitz der Gesellschaft: Juelich
Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498
Vorsitzender des Aufsichtsrats: MinDir Dr. Karl Eugen Huthmacher
Geschaeftsfuehrung: Prof. Dr.-Ing. Wolfgang Marquardt (Vorsitzender),
Karsten Beneke (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt,
Prof. Dr. Sebastian M. Schmidt
------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------


------------------------------------------------------------------------------
Announcing the Oxford Dictionaries API! The API offers world-renowned
dictionary content that is easy and intuitive to access. Sign up for an
account today to start using our lexical data to power your apps and
projects. Get started today and enter our developer competition.
http://sdm.link/oxford
_______________________________________________
micro-manager-general mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/micro-manager-general
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: StartCom/StartSSL SSL Cert for micro-manager.org no longer valid for future browser updates

Nico Stuurman-2
Hi Christian,


> just a little something I noticed recently; I'm using Chrome dev releases (currently 58), and it marks connections to https://micro-manager.org as unsafe. Checking the cert, I found that, while current stable Chrome/Firefox still trust the StartCom's root certificate, apparently they've fallen in distrust with these two browser vendors due to malpractice [ https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/ ].
>
>
> As the certificate must be renewed in April anyways, a different CA could be used, e.g. Let's Encrypt.

Thanks!  Great suggestion!  I really was not looking forward to
renewing, and previously did not like that Let's encrypt needs renewal
every 90 days, but their certbot software makes it a breeze!  Transfer
was done within 5 minutes (more or less) of my time.  Highly recommended
for anyone else administering websites! (and best of all, they are here
in town and support the EFF).

Best,

Nico



------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
micro-manager-general mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/micro-manager-general
Loading...